# Path to database
mod_db_path=/opt/i360_pam_imunify/db

# Path to UNIX socket
socket=/opt/i360_pam_imunify/pam_imunify360.sock

# Log file path
# log=/var/log/imunify360/pam.log

# Sentry error reporting (must be an url or "off")
sentry=https://sentry.cloudlinux.com/sentry/i360-pam-imunify/

# RBL domains (separated with comma) and timeout (in seconds)
rbl=net-brute.rbl.imunify.com.
RBL_timeout=5
RBL_nameserver=ns1-rbl.imunify.com:53

USER_LOCK_TIMEOUT=5
USER_LOCK_ATTEMPTS=10
USER_LOCK_MINUTES=5

# for how long username / ip should timeout in minutes
USER_IP_LOCK_TIMEOUT=5
# of attempts after which username / ip should be locked
USER_IP_LOCK_ATTEMPTS=10
# period during which attempts should be accounted for
USER_IP_LOCK_MINUTES=5
# for how long username / ip pair shall be kept in whitelist after succesful login
# (default 20160 is 14 days)
USER_IP_LOCK_AUTOWHITELIST_TIMEOUT=20160

# for how long IP should timeout in minutes
IP_LOCK_TIMEOUT=5
# of attempts after which IP should be locked
IP_LOCK_ATTEMPTS=100
# period during which attempts should be accounted for
IP_LOCK_MINUTES=5

whitelisted_ips_path=/var/i360_pam_imunify/wl/ips.txt

# whitelisted_ips_include is comma separated path list
# where user ip list path goes the last
whitelisted_ips_include=/etc/apache2/conf.d/modsec_vendor_configs/imunify360_full_apache/rbl_whitelist,/etc/httpd/conf/modsecurity.d/rules/custom/rbl_whitelist,/etc/apache2/conf.d/modsec_vendor_configs/imunify360-full-litespeed/rbl_whitelist

whitelisted_users_path=/var/i360_pam_imunify/users/users.txt

# Idle period after which the daemon will go to sleep on OSes booted with systemd
idle_timeout=600