From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1MZaP1-00033a-N1 for garchives@archives.gentoo.org; Sat, 08 Aug 2009 01:07:19 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 5F76BE0373; Sat, 8 Aug 2009 01:07:18 +0000 (UTC) Received: from mail.st4vs.net (mail.st4vs.net [88.96.252.46]) by pigeon.gentoo.org (Postfix) with ESMTP id 2A084E0373 for ; Sat, 8 Aug 2009 01:07:18 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.st4vs.net (Postfix) with ESMTP id 8937712A7DE for ; Sat, 8 Aug 2009 02:07:17 +0100 (BST) X-Virus-Scanned: amavisd-new 2.6.4 (20090625) at st4vs.net Received: from mail.st4vs.net ([127.0.0.1]) by localhost (mail.st4vs.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4n1U3YjkJhJZ for ; Sat, 8 Aug 2009 02:07:17 +0100 (BST) Received: from hotdog.st4vs.net (hotdog.st4vs.net [88.96.252.45]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by mail.st4vs.net (Postfix) with ESMTPS id 3DCF312A5C6 for ; Sat, 8 Aug 2009 02:07:17 +0100 (BST) From: Steve Dommett To: gentoo-server@lists.gentoo.org Subject: Re: [gentoo-server] iptables && fail2ban Date: Sat, 8 Aug 2009 02:07:16 +0100 User-Agent: KMail/1.9.10 References: <10114659.21222086363221.JavaMail.gibbonsr@twix.insanity5902.no-ip.org> <1249149991.4396.2.camel@laptop.homershut.net> <4A7DE1DA.9070906@gmail.com> In-Reply-To: <4A7DE1DA.9070906@gmail.com> Face: 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 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-server@lists.gentoo.org Reply-to: gentoo-server@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200908080207.16984.steve@st4vs.net> X-Archives-Salt: 21f07341-64f9-4ad2-a28b-2a5e45a6c09e X-Archives-Hash: 55107bfe0ed48b4cc24a213bdd7293a3 On Saturday 08 August 2009, mrfroasty wrote: > I have applied this and test it looks like its working better, found in > the ubuntu forums... > Yes, they look much more adequate. I don't run an FTP server myself, but I notice than fail2ban (0.8.3 at least) on Gentoo already includes those rules in /etc/fail2ban/filter.d/proftpd.conf You just need to enable that particular config in the [proftpd-iptables] section of /etc/fail2ban/jail.conf Cheers, Steve.