Tak se snazim rozchodit tu utilitu fail2ban, vypada to presne na to co potrebuju
ale nemuzu to nejak rozchodit, zmenil jsem nastaveni ssh na telnet a kdyz dam restart sluzby tak to napise fail
oot@ubuntu:~# /etc/init.d/fail2ban restart
* Restarting authentication failure monitor fail2ban [fail]
root@ubuntu:~#
root@ubuntu:~# cat /var/log/fail2ban.log
2011-07-31 03:55:05,493 fail2ban.server : INFO Changed logging target to /var/log/fail2ban.log for Fail2ban v0.8.4-SVN
2011-07-31 03:55:05,494 fail2ban.jail : INFO Creating new jail 'ssh'
2011-07-31 03:55:05,494 fail2ban.jail : INFO Jail 'ssh' uses poller
2011-07-31 03:55:05,597 fail2ban.filter : INFO Added logfile = /var/log/auth.log
2011-07-31 03:55:05,598 fail2ban.filter : INFO Set maxRetry = 6
2011-07-31 03:55:05,599 fail2ban.filter : INFO Set findtime = 600
2011-07-31 03:55:05,599 fail2ban.actions: INFO Set banTime = 600
2011-07-31 03:55:05,674 fail2ban.jail : INFO Jail 'ssh' started
2011-07-31 04:00:01,134 fail2ban.jail : INFO Jail 'ssh' stopped
2011-07-31 04:00:01,139 fail2ban.server : INFO Exiting Fail2ban
Tak tento problem jsem uz vyresil. prepsal jsem to zpet na SSH a nainstaloval SSH na zkousku, takze to uz se spusti, ale kdyz zadam 6 x spatne heslo tak se vubec nic nestane... iptables -L je cistej a ja se muzu klidne na SSH pripojovat znovu
Tak uz mi to funguje....Ale porad nemuzu nejak nastavit ten Telnet.... nastavuju tam
[telnet]
enabled = true
port = telnet
filter = telnetd
logpatch = /var/log/auth.log
banaction = iptables-allports
maxretry = 2
ale pri restartu sluzby to vypise fail