Fail2Ban v0.8.4

I enabled DEBUG (I had to disable my jail that watches the Fail2Ban log for repeat failures and bans them for longer, because the debug messages in the log trigger the filter which adds more messages to the log when it runs, and wastes system resources at best.)

Is there a way to get fail2ban to reprocess that log file (before logrotate gets to it)?

On Sat, May 5, 2012 at 2:16 AM, Yaroslav Halchenko <> wrote:
uuu -- might be trying to perform a DoS on ie

so -- you would need to turn debug mode on (check your fail2ban.conf)
and share such precious information as fail2ban version you are using ;)

On Fri, 04 May 2012, Yehuda Katz wrote:

>    I ran into the follow issue on one of our servers. I was reviewing our
>    logwatch messages today and I noticed that a single host was able to try
>    to log in 46 times (should have been banned for a week).
>    Fail2ban is banning other SSH attackers, the difference is that this one
>    is using IP addresses as the user name.
>    I posted the log on pastebin so that it does not lose its
>    formatting:�[1]
>    Thoughts on why this is not being banned?
>    (I will admit that I have not done any of my own investigation. Next week
>    is finals week and I just don't have time now.)
Yaroslav O. Halchenko
Postdoctoral Fellow,   Department of Psychological and Brain Sciences
Dartmouth College, 419 Moore Hall, Hinman Box 6207, Hanover, NH 03755
Phone: +1 (603) 646-9834                       Fax: +1 (603) 646-1419

Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
Fail2ban-users mailing list