fail2ban/debian/README.Debian

44 lines
1.5 KiB
Plaintext
Raw Normal View History

fail2ban for Debian
-------------------
2005-07-13 10:01:01 +00:00
This package is nearly 100% identical to the upstream version. It was
merely packaged to be installed on a Debian system and due to tight
collaboration with upstream author most of the Debian modifications
penetrate into the next upstream.
Currently the main difference with upstream: python libraries are
placed under /usr/share/fail2ban insteadh of /usr/lib/fail2ban to
comply with policy regarding architecture independent resources.
2005-09-27 15:45:26 +00:00
Default behavior:
-----------------
Only handling of ssh files is enabled by default. If you want to use
fail2ban with apache, please enable apache section manually in
/etc/fail2ban.conf.
2005-09-27 15:45:26 +00:00
Troubleshooting:
---------------
Broken chain:
2005-09-09 18:57:53 +00:00
Currently no checks if an iptables queue generated at the beginning
(fail2ban-http and fail2ban-ssh) exists. So if your firewall resets the iptable
rules -- it is your responsibility to restart fail2ban. Also you can
augment fwban and fwunban rules and include as first lines full
definitions of fwstart. That is nasty solution and probably it will get
resolved in the future.
2005-09-09 18:57:53 +00:00
2005-09-27 15:45:26 +00:00
Mailing:
As it was reported (bug #329722) you might need to provide a full
e-mail address in fail2ban.conf option MAIL:from to make your mail
server accept that email. I've added @localhost to both MAIL:from and
MAIL:to in the default configuration shipped with Debian. It seems to
work nicely now
See TODO.Debian for more details, as well as the Debian Bug Tracking
system.
2005-09-27 15:45:26 +00:00
-- Yaroslav O. Halchenko <debian@onerussian.com>, Tue Sep 27 11:36:41 2005