Ubuntu
libapache-mod-evasive package

Apache mod_evasive does not call system command on DoS event

Bug #1067398 reported by Jozsef Dubravszky on 2012-10-16

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	libapache-mod-evasive (Ubuntu)	New	Undecided	Unassigned

Bug Description

Apache mod_evasive does not call the system command defined in DOSSystemCommand config parameter. Module works fine, evades DoS attacks but does not execute the specified command. This prvents effective protection like notifying other modules/services to take appropriate measures (firewall, log, notification etc.)

The following bug may be relevant to this one:
https://bugs.launchpad.net/ubuntu/+source/libapache-mod-evasive/+bug/605679

Revision history for this message

Christian Reis (kiko) wrote on 2015-01-07:

I don't think the /bin/mail bug is actually relevant.

But to verify the issue you posted, can you check to see whether the www-user can invoke the command specified? Is there anything in syslog that indicates a problem?

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntulibapache-mod-evasive package

Apache mod_evasive does not call system command on DoS event

Bug Description

Other bug subscribers

Remote bug watches

Ubuntu
libapache-mod-evasive package