Your message dated Mon, 29 Oct 2007 11:01:40 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#448428: fail2ban: unnecessary lookups for action command
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: fail2ban
Version: 0.7.5-2
Severity: minor
Hi there,
This is really more of an optimization thing that anything, and is not
all that important. Currently, fail2ban does
iptables -L | grep fail2ban-<name>
There are two issues I have with this, both admittedly minor:
This causes rdns lookups for all rulesets, which are potentially slow to
return if you purposefully have entries to drop some invalid addresses
not in DNS.
Second, it ignores a feature of iptables: `iptables -L $chain` works
just fine.
Combining these two minor complaints, the correct action line would be:
iptables -nL fail2ban-<name>
Thanks for considering, and thanks for maintaining this,
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-5-xen-amd64
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Versions of packages fail2ban depends on:
ii iptables 1.3.6.0debian1-5 administration tools for packet fi
ii lsb-base 3.1-23.2etch1 Linux Standard Base 3.1 init scrip
ii python 2.4.4-2 An interactive high-level object-o
ii python-central 0.5.12 register and build utility for Pyt
ii python2.4 2.4.4-3 An interactive high-level object-o
fail2ban recommends no packages.
-- no debconf information
--
-----------------------------------------------------------------
| ,''`. Stephen Gran |
| : :' : [EMAIL PROTECTED] |
| `. `' Debian user, admin, and developer |
| `- http://www.debian.org |
-----------------------------------------------------------------
--- End Message ---
--- Begin Message ---
> Feel free to close this if it's just used to make sure we have a -j
> fail2ban-<name> in INPUT.
yeap ;-) done ;-)
cheers
--
Yaroslav Halchenko
Research Assistant, Psychology Department, Rutgers-Newark
Student Ph.D. @ CS Dept. NJIT
Office: (973) 353-5440x263 | FWD: 82823 | Fax: (973) 353-1171
101 Warren Str, Smith Hall, Rm 4-105, Newark NJ 07102
WWW: http://www.linkedin.com/in/yarik
--- End Message ---
