>>>>> "SZÉPE" == SZÉPE Viktor <vik...@szepe.net> writes:
SZÉPE> Idézem/Quoting Peter Chubb <peter.ch...@data61.csiro.au>: >> Package: fail2ban Version: 0.10.2-1 Severity: normal >> >> Dear Maintainer, >> >> After upgrading fail2ban, it no longer starts. The error message >> is: >> >> fail2ban Failed during configuration: Bad value substitution: >> option 'mode' in section 'Definition' contains an interpolation key >> 'ddos' which is not a valid option name. Raw value: '%(ddos)s' >> >> The problem is in /etc/fail2ban/filter.d/sshd-ddos.conf SZÉPE> It seems to be that the sshd-ddos filter has been merged into SZÉPE> sshd. Please see sshd.conf for details and remove SZÉPE> sshd-ddos.conf and set SZÉPE> [sshd] mode = ddos. SZÉPE> I hope this helps you. Doing that gets me going -- thanks. However, it seems to me that the Debian config files are set up to allow multiple jail names, and it should be possible to do [sshd-ddos] enabled = true in jail.local and it should work (like it used to). The same goes for sshd-aggressive. Maybe sshd-ddos.conf should be rewritten as: ... [Definition] filter=sshd[mode=ddos] ... Alternatively, remove sshd-ddos.conf and sshd-aggressive.conf from the package Peter C -- Dr Peter Chubb Tel: +61 2 9490 5852 http://ts.data61.csiro.au/ Trustworthy Systems Group Data61 (formerly NICTA)
