fail2ban not execute command to start jail
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
fail2ban (Arch Linux) |
Invalid
|
Undecided
|
Unassigned | ||
fail2ban (Debian) |
Invalid
|
Undecided
|
Unassigned | ||
fail2ban (Mandriva) |
Invalid
|
Undecided
|
Unassigned | ||
fail2ban (Suse) |
Invalid
|
Undecided
|
Unassigned | ||
fail2ban (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
iptables (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: fail2ban
I am runnig ubuntu 9.04 server 64 bit.
root@work-
Linux work-isp.ltcd.com 2.6.28-13-generic #45-Ubuntu SMP Tue Jun 30 22:12:12 UTC 2009 x86_64 GNU/Linux
Want start fail2ban a jail using iptables some or all of the command to create the jail will fail and
leave the jail in bad state or uncreated. When this happend the I see errors in the log stating that
the command failed with a returned code (sometime 200 and simetimes 400 and sometimes 100)
Between working and broken (failed to create jail) I do not change anything in the configs. All I do
is just /etc/init.
by /et/init.d/fail2ban start. If a do the a few times then I get all the jails created.
I known that you must run using python 2.5 not python 2.6. I have edit the top of both
fail2ban-server and fail2ban-client to '#!/usr/
I can see that the jail is not created using iptables -n -L.
Sometime the chain for the jail is not created. Sometimes
the return is not there. Sometime the rule in the INPUT
chain to jump is not there. In all case that did not work
I just a command returning X00.
root@work-
Description: Ubuntu 9.04
Release: 9.04
root@work-isp:~# apt-cache policy fail2ban
fail2ban:
Installed: 0.8.3-2
Candidate: 0.8.3-2
Version table:
*** 0.8.3-2 0
500 http://
100 /var/lib/
Here is a copy of the 2 jails that are active in jails.conf:
[apache]
enabled = true
port = http,https
filter = apache-auth
logpath = /var/log/
bantime = 900
maxretry = 6
[dovecot]
enabled = true
port = smtp,ssmtp,
filter = dovecot-auth
logpath = /var/log/mail.log
bantime = 900
maxretry = 6
[SquirrelMail]
enabled = true
port = http,https
filter = squirrelmail
logpath = /var/log/
bantime = 900
maxretry = 3
Here log file showing the error:
2009-07-23 18:42:31,996 fail2ban.server : INFO Changed logging target to /var/log/
2009-07-23 18:42:31,998 fail2ban.jail : INFO Creating new jail 'apache'
2009-07-23 18:42:31,998 fail2ban.jail : INFO Jail 'apache' uses poller
2009-07-23 18:42:32,029 fail2ban.filter : INFO Added logfile = /var/log/
2009-07-23 18:42:32,030 fail2ban.filter : INFO Set maxRetry = 6
2009-07-23 18:42:32,033 fail2ban.filter : INFO Set findtime = 600
2009-07-23 18:42:32,034 fail2ban.actions: INFO Set banTime = 900
2009-07-23 18:42:32,054 fail2ban.jail : INFO Creating new jail 'dovecot'
2009-07-23 18:42:32,054 fail2ban.jail : INFO Jail 'dovecot' uses poller
2009-07-23 18:42:32,056 fail2ban.filter : INFO Added logfile = /var/log/mail.log
2009-07-23 18:42:32,058 fail2ban.filter : INFO Set maxRetry = 6
2009-07-23 18:42:32,060 fail2ban.filter : INFO Set findtime = 600
2009-07-23 18:42:32,062 fail2ban.actions: INFO Set banTime = 900
2009-07-23 18:42:32,080 fail2ban.jail : INFO Creating new jail 'SquirrelMail'
2009-07-23 18:42:32,080 fail2ban.jail : INFO Jail 'SquirrelMail' uses poller
2009-07-23 18:42:32,082 fail2ban.filter : INFO Added logfile = /var/log/
2009-07-23 18:42:32,083 fail2ban.filter : INFO Set maxRetry = 3
2009-07-23 18:42:32,086 fail2ban.filter : INFO Set findtime = 600
2009-07-23 18:42:32,087 fail2ban.actions: INFO Set banTime = 900
2009-07-23 18:42:32,102 fail2ban.jail : INFO Jail 'apache' started
2009-07-23 18:42:32,107 fail2ban.jail : INFO Jail 'dovecot' started
2009-07-23 18:42:32,114 fail2ban.jail : INFO Jail 'SquirrelMail' started
2009-07-23 18:42:32,139 fail2ban.
iptables -A fail2ban-dovecot -j RETURN
iptables -I INPUT -p tcp -m multiport --dports smtp,ssmtp,
2009-07-23 19:16:32,479 fail2ban.jail : INFO Jail 'apache' stopped
2009-07-23 19:16:33,426 fail2ban.
iptables -F fail2ban-dovecot
iptables -X fail2ban-dovecot returned 100
ProblemType: Bug
Architecture: amd64
Dependencies:
DistroRelease: Ubuntu 9.04
NonfreeKernelMo
Package: fail2ban None [modified: /var/lib/
PackageArchitec
ProcEnviron:
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: fail2ban
Uname: Linux 2.6.28-14-generic x86_64
UnreportableReason: This is not a genuine Ubuntu package
tags: | added: fail2ban |
tags: | removed: fail2ban |
Changed in fail2ban (Ubuntu): | |
importance: | Undecided → Medium |
status: | New → Confirmed |
Invalidated wrongly set tasks.
@ Fail2Ban: Please do not add new tasks to bug reports or nominate for release without commenting to advise why you have done this.
Thanks in advance!