Skip to content
This repository was archived by the owner on Mar 17, 2025. It is now read-only.

Security

Jeremy Falling edited this page Jan 22, 2015 · 3 revisions

You should set the correct ownership and permissions of all autoban files and run it as its own user. It is possible to execute code through the config files at this time (via log4perl).

You should not run autoban as root. If you have plugins or post rotate scripts that require escalated permissions you should use something like sudo. These scripts should in turn have proper permissions to prevent tampering.

Clone this wiki locally