Securing the login page

#1

Hi,

I am running cockpit via the author maintained docker. I’m wondering if there’s a good way to secure the login page against brute force? I use nginx and fail2ban with my site, but I’m not sure how to get fail2ban to monitor the docker’s logs? Or if there is a simpler way to add a timeout function to the login page?

Thanks,
Rex

0 Likes

#2

@rexdjw, that is possible now (after https://github.com/agentejo/cockpit/issues/1075) using the Logger addon (https://github.com/pauloamgomes/cockpit-logger-addon), that would provide logging (file or rsyslog) about the failed logins so you can have specific rules with fail2ban, e.g.:

0 Likes