Skip to content

linuxitux/GTFO

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
banned.ip
banned.ip
 
 
gtfo
gtfo
 
 

Repository files navigation

GTFO

GTFO my server yo

This script scan Apache/Nxing error logs and block IP addresses trying to access specific patterns. It uses iptables rules to block malicious IP addresses. Being not a deamon, it needs tu be run by a cron job.

Installation

# git clone https://github.com/linuxitux/GTFO.git
# chmod +x GTFO/gtfo

Add this to root's crontab:

 */2 * * * * /path/to/GTFO/gtfo >> /var/log/gtfo.log

Configuration

Edit the following variables inside gtfo according to your needs:

  • ERRLOG - Path to Apache/Nginx error log.
  • WORKDIR - Installation directory.
  • LINES - Number of lines to parse.
  • KEYWORDS - List of patterns to ban.
  • HOURS - Duration of bans (in hours).

Example:

ERRLOG="/usr/local/nginx/logs/error.log"
WORKDIR="/usr/local/gtfo"
LINES=100
# We don't have Wordpress or Joomla! here, so GTFO my server yo
KEYWORDS=("wp-login.php" "administrator/index.php")
HOURS=1

About

GTFO my server yo

Resources

Readme

License

GPL-3.0 license
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages