Menu
▾
▴
fail2ban-users
|
From: Chris W. <ch...@si...> - 2006-04-11 08:59:39
|
Hi All, What's the best way to install fail2ban on a debian stable box? I'm a simpleton, so I'll need step-by-step instructions if possible. cheers, Chris |
|
From: Yaroslav H. <li...@on...> - 2006-04-11 19:23:38
|
it seems that the most recent version is stable enough , so I built most recent version of it for sarge (probably you could just grab it from unstable but decided to do it right way -- pbuilder in sarge chroot) add deb http://itanix.rutgers.edu/rumba/ sarge backport to your /etc/apt/sources.list apt-get update apt-get install fail2ban enjoy On Tue, 11 Apr 2006, Chris Withers wrote: > Hi All, > What's the best way to install fail2ban on a debian stable box? > I'm a simpleton, so I'll need step-by-step instructions if possible. > cheers, > Chris -- .-. =------------------------------ /v\ ----------------------------= Keep in touch // \\ (yoh@|www.)onerussian.com Yaroslav Halchenko /( )\ ICQ#: 60653192 Linux User ^^-^^ [175555] |
|
From: Chris W. <ch...@si...> - 2006-04-11 19:37:52
|
Yaroslav Halchenko wrote: > it seems that the most recent version is stable enough , so I built most > recent version of it for sarge (probably you could just grab it from > unstable but decided to do it right way -- pbuilder in sarge chroot) > > add > > deb http://itanix.rutgers.edu/rumba/ sarge backport > > to your /etc/apt/sources.list > > apt-get update > apt-get install fail2ban That looks great, thanks :-) Will you be keeping that build up to date? (I guess I mainly care about security problems..) Also, what will I have to do if/when fail2ban makes it into stable? cheers, Chris |
|
From: Yaroslav H. <li...@on...> - 2006-04-11 20:17:24
|
On Tue, 11 Apr 2006, Chris Withers wrote:
> Will you be keeping that build up to date?
> (I guess I mainly care about security problems..)
well -- it will follow stable upstream. To be more precise it will be
mainly backport from etch into sarge -- so if fail2ban makes it way to
etch - I will update it in backport as well. I might (but no guarantee)
create a branch and patch security updates more rapidly.
> Also, what will I have to do if/when fail2ban makes it into stable?
nothing -- I will remove it from local backport and I bet that etch
version will be at least as new as the one I provide for backports ;-)
but I am not sure when they are going to release etch -- so I think you
can sleep calm for the next 1/2 year at least ;-)
--
.-.
=------------------------------ /v\ ----------------------------=
Keep in touch // \\ (yoh@|www.)onerussian.com
Yaroslav Halchenko /( )\ ICQ#: 60653192
Linux User ^^-^^ [175555]
|
|
From: Yaroslav H. <li...@on...> - 2006-04-11 20:42:11
|
yikes -- I just now realized that I didn't bother my sponsor yet to
upload -2 revision (will do that some time this week). So unstable
and testing have only 0.6.1-1. But I think you would be only in better
situation with -2 since it fixes a tiny bug :-)
On Tue, 11 Apr 2006, Yaroslav Halchenko wrote:
> On Tue, 11 Apr 2006, Chris Withers wrote:
> > Will you be keeping that build up to date?
> > (I guess I mainly care about security problems..)
> well -- it will follow stable upstream. To be more precise it will be
> mainly backport from etch into sarge -- so if fail2ban makes it way to
> etch - I will update it in backport as well. I might (but no guarantee)
> create a branch and patch security updates more rapidly.
> > Also, what will I have to do if/when fail2ban makes it into stable?
> nothing -- I will remove it from local backport and I bet that etch
> version will be at least as new as the one I provide for backports ;-)
> but I am not sure when they are going to release etch -- so I think you
> can sleep calm for the next 1/2 year at least ;-)
--
.-.
=------------------------------ /v\ ----------------------------=
Keep in touch // \\ (yoh@|www.)onerussian.com
Yaroslav Halchenko /( )\ ICQ#: 60653192
Linux User ^^-^^ [175555]
|
|
From: Chris W. <ch...@si...> - 2006-04-12 07:51:37
|
Yaroslav Halchenko wrote:
> On Tue, 11 Apr 2006, Chris Withers wrote:
>> Will you be keeping that build up to date?
>> (I guess I mainly care about security problems..)
> well -- it will follow stable upstream. To be more precise it will be
> mainly backport from etch into sarge -- so if fail2ban makes it way to
> etch - I will update it in backport as well. I might (but no guarantee)
> create a branch and patch security updates more rapidly.
Excellent, thanks :-)
Chris
--
Simplistix - Content Management, Zope & Python Consulting
- http://www.simplistix.co.uk
|
|
From: Chris W. <ch...@si...> - 2006-04-17 14:41:31
|
Hi, Yaroslav Halchenko wrote: > deb http://itanix.rutgers.edu/rumba/ sarge backport > > to your /etc/apt/sources.list > > apt-get update Okay, this worked, but I tried "aptitude update" first and got errors. Sadly, they got overwritten in my shell buffer so I can't tell you what they were other than a vague "sarge/backport does not exist" type error. Maybe you can find the errors in your web server logs? Anyway, using apt-get worked, and then after that "aptitude update" worked too... > apt-get install fail2ban I used: aptitude install fail2ban Do I need to do anything else now or will fail2ban be working? Do I need to do anything to get a fail2ban section in my daily logwatch mail? cheers, Chris -- Simplistix - Content Management, Zope & Python Consulting - http://www.simplistix.co.uk |
|
From: Yaroslav H. <li...@on...> - 2006-04-17 22:37:25
|
to tell the truth can't help much since you didn't provide with what aptitude complained about. for the sake of testing did next things on available sarge (i686 box) and everything worked fine removed fail2ban zaza:/etc/apt# grep backport sources.list deb http://itanix.rutgers.edu/rumba/ sarge backport zaza:/etc/apt# apt-cache policy fail2ban fail2ban: Installed: (none) Candidate: 0.6.1-2 Version Table: 0.6.1-2 0 990 http://itanix.rutgers.edu sarge/backport Packages 100 /var/lib/dpkg/status zaza:/etc/apt# aptitude install fail2ban Reading Package Lists... Done Building Dependency Tree Reading extended state information Initializing package states... Done Reading task descriptions... Done The following packages have been kept back: acroread acroread-plugins clamav-base curl dia dia-common dia-libs evolution flashplayer-mozilla flex gnome-vlc gnupg gpdf i2c-source kamera karbon kcoloredit kdegraphics kdegraphics-dev kdegraphics-kfile-plugins kdvi kfax kformula kgamma kghostview kiconedit kmrml koffice-data koffice-libs kolourpaint kooka kpdf kpovmodeler kruler ksnapshot ksvg kuickshow kview kviewshell libclamav1 libcurl3 libgnutls11 libkscan1 libnetpbm10 libnetpbm9 libquicktime-dev libquicktime0 libraw1394-8 libraw1394-dev libsensors3 libtasn1-2 libxine1 lm-sensors metamail mozilla-acroread mozilla-plugin-vlc mplayer-586 netpbm pdftohtml qvlc sudo tar unzip vlc vlc-gnome vlc-plugin-alsa vlc-plugin-esd vlc-qt w32codecs wxvlc xpdf xpdf-common xpdf-reader xpdf-utils zoo The following NEW packages will be installed: fail2ban 0 packages upgraded, 1 newly installed, 0 to remove and 75 not upgraded. Need to get 0B/48.6kB of archives. After unpacking 270kB will be used. Writing extended state information... Done Selecting previously deselected package fail2ban. (Reading database ... 243709 files and directories currently installed.) Unpacking fail2ban (from .../fail2ban_0.6.1-2_all.deb) ... Setting up fail2ban (0.6.1-2) ... Starting fail2ban: .done Reading Package Lists... Done Building Dependency Tree Reading extended state information Initializing package states... Done Reading task descriptions... Done As for logwatch scripts -- just grab tarball which is somewhere in the mailing list archive... or what a heck -- just run: wget -O- http://www.onerussian.com/tmp/fail2ban.logwatch.5x.tgz | tar -xzvf- That would install scripts for the version of logwatch within sarge On Mon, 17 Apr 2006, Chris Withers wrote: > Hi, > Yaroslav Halchenko wrote: > >deb http://itanix.rutgers.edu/rumba/ sarge backport > >to your /etc/apt/sources.list > >apt-get update > Okay, this worked, but I tried "aptitude update" first and got errors. > Sadly, they got overwritten in my shell buffer so I can't tell you what they were other than a vague "sarge/backport does > not exist" type error. > Maybe you can find the errors in your web server logs? > Anyway, using apt-get worked, and then after that "aptitude update" worked too... > >apt-get install fail2ban > I used: > aptitude install fail2ban > Do I need to do anything else now or will fail2ban be working? > Do I need to do anything to get a fail2ban section in my daily logwatch mail? > cheers, > Chris -- .-. =------------------------------ /v\ ----------------------------= Keep in touch // \\ (yoh@|www.)onerussian.com Yaroslav Halchenko /( )\ ICQ#: 60653192 Linux User ^^-^^ [175555] |
|
From: Chris W. <ch...@si...> - 2006-04-18 08:51:40
|
Yaroslav Halchenko wrote: > to tell the truth can't help much since you didn't provide with what > aptitude complained about. Well, it was specifically the "aptitude update" that was erroring. "apt-get update" worked, and once it had run, "aptitude update" also worked. I dunno whether it's a problem with the .deb's you made available or a problem with aptitude itself... > As for logwatch scripts -- just grab tarball which is somewhere in the > mailing list archive... or what a heck -- just run: > > > wget -O- http://www.onerussian.com/tmp/fail2ban.logwatch.5x.tgz | tar -xzvf- > > That would install scripts for the version of logwatch within sarge Thanks! cheers, Chris -- Simplistix - Content Management, Zope & Python Consulting - http://www.simplistix.co.uk |
|
From: Yaroslav H. <li...@on...> - 2006-04-18 15:38:57
|
> Yaroslav Halchenko wrote: > >to tell the truth can't help much since you didn't provide with what > >aptitude complained about. > Well, it was specifically the "aptitude update" that was erroring. "apt-get update" worked, and once it had run, "aptitude update" > also worked. I dunno whether it's a problem with the .deb's you made available or a problem with aptitude itself... so what "aptitude update" says?? in my case it has no complains: zaza:/home/yoh# aptitude update > /tmp/aptitude.update zaza:/home/yoh# grep backport /tmp/aptitude.update Hit http://itanix.rutgers.edu sarge/backport Packages Hit http://itanix.rutgers.edu sarge/backport Release so what is the output of running aptitude update? -- .-. =------------------------------ /v\ ----------------------------= Keep in touch // \\ (yoh@|www.)onerussian.com Yaroslav Halchenko /( )\ ICQ#: 60653192 Linux User ^^-^^ [175555] |
|
From: Chris W. <ch...@si...> - 2006-04-18 17:19:14
|
Yaroslav Halchenko wrote:
>
> so what is the output of running aptitude update?
That, sadly, is the problem.
It only did it until I ran "apt-get update", and doing that obliterated
the error messages :-(
After running "apt-get update", "aptitude update" worked fine :-S
Oh well, chalk it down to another unreproducible bug :-/
Chris
--
Simplistix - Content Management, Zope & Python Consulting
- http://www.simplistix.co.uk
|
|
From: Yaroslav H. <li...@on...> - 2006-04-18 18:42:45
|
sorry for not reading your previous email careful enough ;-)
indeed, even with apt-get update there are some spurious problems on the
first run - fails to obtain Packages file properly or smth like that.
enjoy fail2ban
On Tue, 18 Apr 2006, Chris Withers wrote:
> Yaroslav Halchenko wrote:
> >so what is the output of running aptitude update?
> That, sadly, is the problem.
> It only did it until I ran "apt-get update", and doing that obliterated the error messages :-(
> After running "apt-get update", "aptitude update" worked fine :-S
> Oh well, chalk it down to another unreproducible bug :-/
> Chris
--
.-.
=------------------------------ /v\ ----------------------------=
Keep in touch // \\ (yoh@|www.)onerussian.com
Yaroslav Halchenko /( )\ ICQ#: 60653192
Linux User ^^-^^ [175555]
|
|
From: Chris W. <ch...@si...> - 2006-06-01 06:59:08
|
Yaroslav Halchenko wrote: > deb http://itanix.rutgers.edu/rumba/ sarge backport Has this server been a bit up & down recently? It time out when I did an aptitude upgrade && aptitude update last weekend... Chris -- Simplistix - Content Management, Zope & Python Consulting - http://www.simplistix.co.uk |
|
From: Yaroslav H. <li...@on...> - 2006-06-01 14:55:47
|
yeah -- there is something funky happening... didn't get it yet -- it seems something with firewall configs although firewall (ipmasq + custom iptables rules) restart helped. Also our local IT department constantly mangling network at the moment... the problem partially is that web server itself runs inside vserver and doesn't have a separate IP address so I need to do all DNAT/SNAT forwards - some issues get tricky to troubleshoot... I will keep an eye on it On Thu, 01 Jun 2006, Chris Withers wrote: > Yaroslav Halchenko wrote: > > deb http://itanix.rutgers.edu/rumba/ sarge backport > Has this server been a bit up & down recently? > It time out when I did an aptitude upgrade && aptitude update last > weekend... > Chris -- .-. =------------------------------ /v\ ----------------------------= Keep in touch // \\ (yoh@|www.)onerussian.com Yaroslav Halchenko /( )\ ICQ#: 60653192 Linux User ^^-^^ [175555] |
|
From: Chris W. <ch...@si...> - 2006-06-02 07:05:18
|
Yaroslav Halchenko wrote:
> yeah -- there is something funky happening... didn't get it yet -- it
> seems something with firewall configs although firewall (ipmasq + custom
> iptables rules) restart helped. Also our local IT department constantly
> mangling network at the moment... the problem partially is that web server
> itself runs inside vserver and doesn't have a separate IP address so I
> need to do all DNAT/SNAT forwards - some issues get tricky to
> troubleshoot... I will keep an eye on it
No worries, just wanted to make sure it wasn't me doing something :-)
Chris
--
Simplistix - Content Management, Zope & Python Consulting
- http://www.simplistix.co.uk
|
Thanks for helping keep SourceForge clean.
X