Update fail2ban configs to support multiple hosts, new log loc

.gitignore

@@ -27,6 +27,7 @@ node_modules/
 www/statics/
 totp/
 nginx/tcms.conf
+fail2ban/tcms-jail.conf
 logs/
 *-shm
 *-wal

Installer.mk

@@ -72,8 +72,12 @@ reset-remove:
 
 .PHONY: fail2ban
 fail2ban:
-	sudo ln -sr fail2ban/tcms-jail.conf   /etc/fail2ban/jail.d/tcms.conf
-	sudo ln -sr fail2ban/tcms-filter.conf /etc/fail2ban/filter.d/tcms.conf
+	cp fail2ban/tcms-jail.tmpl fail2ban/tcms-jail.conf
+	sed -i 's#__LOGDIR__#$(shell pwd)#g' fail2ban/tcms-jail.conf
+	sudo rm /etc/fail2ban/jail.d/$(shell bin/tcms-hostname).conf; /bin/true
+	sudo rm /etc/fail2ban/filter.d/$(shell bin/tcms-hostname).conf; /bin/true
+	sudo ln -sr fail2ban/tcms-jail.conf   /etc/fail2ban/jail.d/$(shell bin/tcms-hostname).conf
+	sudo ln -sr fail2ban/tcms-filter.conf /etc/fail2ban/filter.d/$(shell bin/tcms-hostname).conf
 	sudo systemctl reload fail2ban
 
 .PHONY: nginx

bin/tcms-hostname

@@ -0,0 +1,13 @@
+#!/usr/bin/env perl
+
+use strict;
+use warnings;
+
+use FindBin::libs;
+
+use Trog::Config();
+
+my $domain = Trog::Config->get()->param('general.hostname');
+die "Hostname not set in tCMS configuration.  Please set this first." unless $domain;
+
+print "$domain\n";

fail2ban/tcms-jail.conf → fail2ban/tcms-jail.tmpl

@@ -2,7 +2,7 @@
 enabled = true
 port = http,https
 filter = tcms
-logpath = /var/log/www/tcms.log
+logpath = __LOGDIR__/tcms.log
 maxretry = 5
 findtime = 60
 bantime  = 600