Menu

#4637 Fail2Ban Intrusion Detector / Filter Action Jails / Default Jail Options

1.760
closed-fixed
nobody
None
5
2015-09-11
2015-09-11
M.T.R
No

Hi,

sorry there is another bug in Fail2Ban Intrusion Detector.
I go to option:
Fail2Ban Intrusion Detector / Filter Action Jails / Edit jail Defaults

I don't use this normally, cause i setup the parameters for each new jail individually anyway.

however, if i let those settings like they are from default, and click the save button, for saving the defaults, fail2ban cannot be restarted anymore. (reproducable)

i get the error message:

Failed to restart server : ERROR Failed during configuration: Bad value substitution: section: [ssh] option : action key : protocol rawval : ", chain="%(chain)s"]

as i said i have changed NOTHING,
and before i clicked save i could restart fail2ban with noo problems.

since i know this problem, i have not used this anymore, just for reporting this test here.

so i know, how to get it back working.

i have saved the responsible file jail.conf before.

just copying this former saved file back into etc/fail2ban/ and i can restart fail2ban with no problems.

2 Attachments
jail.conf.bad
jail.conf.good

Discussion

  • M.T.R

    M.T.R - 2015-09-11

    sorry could not edit this post after attaching the files:

    just to make clear,
    jail.conf.good is the file saved before i was clicking on save in the mentioned option in fail2ban.
    jail.conf.bad is the file after hitting the save button in the edit defaults option.

    if i copy the good file into etc/fail2ban folder i can restart failöö2ban without any problems,
    if i copy the bad file there i CANNOT start or restart fail2ban anymore.

    hope this helps

    cheers

     

    Last edit: M.T.R 2015-09-11

  • M.T.R

    M.T.R - 2015-09-11

    comparing the two files,
    you can see that the "Default protocol" is not saved in the bad file.

    I think this should be the reason, why fail2ban won't start anymore.

    cheers.

     

  • M.T.R

    M.T.R - 2015-09-11

    ok,

    i tried it again,

    i saved the defaults via save button in the mentioned option.
    then i go to edit the jail.conf file manually,
    and insert ther missing value:

    Default protocol

    protocol = all

    and now i can restart fail2ban without problems.

    this is the bug,

    Default protocol

    is not saved.

    cheers

     

  • Jamie Cameron

    Jamie Cameron - 2015-09-11
    • status: open --> closed-fixed
     

  • Jamie Cameron

    Jamie Cameron - 2015-09-11

    Thanks - this will be fixed in the next Webmin release.

     

Log in to post a comment.