fail2ban apache-auth filter ignores AH01630
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
fail2ban (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
My Apache's error log is full of baddies trying to use me as a proxy, but fail2ban doesn't ban them. The errors look like this:
Thu May 19 09:48:04.125851 2016] [authz_core:error] [pid 21203:tid 140035017877248] [client 45.55.34.90:53492] AH01630: client denied by server configuration: proxy:http://
The corresponding upstream bug is https:/
I can confirm that manually applying the upstream patch to /etc/fail2ban/
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: fail2ban 0.8.11-1
ProcVersionSign
Uname: Linux 3.13.0-86-generic x86_64
ApportVersion: 2.14.1-0ubuntu3.20
Architecture: amd64
Date: Thu May 19 09:55:34 2016
PackageArchitec
SourcePackage: fail2ban
UpgradeStatus: Upgraded to trusty on 2016-04-27 (21 days ago)
mtime.conffile.
The upstream fix was released with upstream version 0.9.1, so it looks like this bug doesn't affect Ubuntu 16.04 LTS, which has 0.9.3-1.