On Mon, 27 Sep 2010, Christoph Anton Mitterer wrote:
> Just tried it,.. it seems to work (for me (TM)). But then you should use
> "auto" and make pythong.gamin a recommends (IMO).
>...
> What however didn't work, but I guess that's unrelated:
> I tried to ssh to that server and trigger the banning...
hm, so is that the only way you tried gamin in above testing?
or with something else and it did detect file change and banned
appropriately?
> The server is configured to AllowUser root and only accept ssh-keys.
> The client used user root, but has no keys in .ssh .
> This does not even lead to a message in /var/log/auth.log .
> Any way to tell ssh to log also such attacks? I mean that could be used
> for DDoS.
please check README.Debian
* Not caught attempts to login as root
since it might be a relevant one
?
altogether it is not a problem of fail2ban but rather openssh and your
configuration -- what fail2ban could do for you ?
--
.-.
=------------------------------ /v\ ----------------------------=
Keep in touch // \\ (yoh@|www.)onerussian.com
Yaroslav Halchenko /( )\ ICQ#: 60653192
Linux User ^^-^^ [175555]
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]