Sergey G. Brester
Sergey G. Brester
> Is it common for fail2ban users (whether they be end-users or distro maintainers) to intentionally include files that do not exist? It was common that some files gets included...
> So I'd like to add that. What text would be suitable? I don't want to limit your creativity. > If fail2ban won't even warn that a "before" include is...
Following jail configuration shall work: ```ini [postfix] mode = aggressive failregex = %(known/failregex)s ^hostname \S+ does not resolve to address ``` at least with latest postfix-filter (I don't have 1.0.2...
I guess, it'd expect fixing of several tests covering iptables actions. FWIW, at the moment it implies to use `` at end of parameter. For instance, see: https://github.com/fail2ban/fail2ban/blob/7bac8396034b1857577359513911c29a14f8f586/config/action.d/iptables-new.conf#L15
The log-file from where the failures are coming is not a part of API in the moment (neither it is referenced in the ticket, nor I'm convinced it should be...
> get the banned IP addresses from the fail2ban log Why if there is a fail2ban database, where this info (with many other) is available via SQL?
Perfect analysis. Thx! > But I can't assess how "correct" this is in the grand scheme of things, which is why I created a bug report instead of a PR...
Well, although the ability to distinguish ID and IP would be indeed nice, historically it is not always the case at the moment (at least as packing of the value...
1. it doesn't really solve #927. 2. the approach is questionable, who would write in that file and how it is better than: - `fail2ban-client set "$jail" attempt 192.0.2.1/24 ...`...
Why someone would ever need it? `7zS(D).sfx` which support new methods would be almost 300K larger than a mainline `7zS(D).sfx`? What profit do you expect to get there if the...