Support

Admin Tools

#24040 black list for all managed websites

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by on Wednesday, 27 January 2016 17:20 CST

kmu-zentrale
 Dear support-team

Is there a possibility to create one black list for ip addresses for all managed Websites?
I use also watchful.li
Greetings

nicholas
Akeeba Staff
Manager
Hello Markus,

No. I have personally explained why in more than two dozen support tickets. Long story cut short: if you are manually blacklisting IP addresses you are doing it wrong. The correct way to deal with these issues is two-fold:
  1. Set up the automatic IP blocking in Admin Tools and let it handle the IP block by itself.
  2. If you want to prevent repeated attacks from the same IP without bringing your server to its knees ask your host to install and configure Fail2Ban. Since Admin Tools blocks an attacker with an HTTP 403 response (albeit with a big CPU cost since it's a PHP process running in your web server) and any further requests from that IP also result in HTTP 403 Fail2Ban will "see" that in the log and auto-block this IP at the server level. This is over a thousand times more efficient than blocking an IP at the web application (Joomla!) level. The downside is that you need cooperation from your host or a managed server to set this up!


Furthermore, the main reason we do not implement a cross-site IP blacklist is that the API to share the blacklist could in itself be used to attack your site with a Denial of Service attack, blacklisting your IP. Protecting the endpoint sufficiently would be CPU intensive and could be used as another denial of service target (pound it hard until the server croaks from the CPU load). Furthermore you start having concurrency issues, MySQL tables crashing, locked tables increasing your page load time etc. It would be a TERRIBLE idea to implement it with exactly zero security benefits. We've done the hard analysis for you, we know just how futile this is. Trust us.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

System Task
system
This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!