Update harden_server.rst - improve fail2ban section

[tgoeg]

Nextcloud won't log failed login attempts in log levels > 2. Added this to the documentation, and, while at it, improved the fail2ban guide in a few other places.

See nextcloud/server#48826 as well.

☑️ Resolves

• Fix Fail2ban instructions in hardening guide miss needed loglevel and some details #12327

🖼️ Screenshots

[github-actions]

Hello there,
Thank you so much for taking the time and effort to create a pull request to our Nextcloud project.

We hope that the review process is going smooth and is helpful for you. We want to ensure your pull request is reviewed to your satisfaction. If you have a moment, our community management team would very much appreciate your feedback on your experience with this PR review process.

Your feedback is valuable to us as we continuously strive to improve our community developer experience. Please take a moment to complete our short survey by clicking on the following link: https://cloud.nextcloud.com/apps/forms/s/i9Ago4EQRZ7TWxjfmeEpPkf6

Thank you for contributing to Nextcloud and we hope to hear from you soon!

(If you believe you should not receive this message, you can add yourself to the blocklist.)

[susnux]

Makes sense

[nickvergessen]

In theory the nextcloud.log is owned by the webserver user anyway, as it's the one creating and writing it?

[tgoeg]

Only in theory :-)
Mine is not, as the whole installation is owned by a specific linux user as I never let the www-data user own its own executables (r/w), as that opens up the possibility for exploits to change the application's code.
Most admins I know do it this way.

[nickvergessen]

Thanks a lot!

[welcome]

Thanks for your first pull request and welcome to the community! Feel free to keep them coming! If you are looking for issues to tackle then have a look at this selection: https://github.com/nextcloud/documentation/issues?q=is%3Aopen+is%3Aissue+label%3A%22good+first+issue%22

[nickvergessen]

/backport to stable30