[php-cve-2012-1823]

enabled = true
port = http,https
filter = php-cve-2012-1823
action   = iptables-multiport[name=php-cve-2012-1823, port="http,https"]
           sendmail-whois-lines[name=php-cve-2012-1823, lines=5, dest=root@domaine.eu, sender=fail2ban@domaine.eu]
logpath = %(apache_access_log)s
bantime = 604800
findtime = 86400
maxretry = 1