On 07/12/2015 12:58 PM, E.B. wrote: > I have systemd and installing fail2ban without the > additional fail2ban-systemd package working fine. > So quetsion not "what is systemd" but what does > the fail2ban-systemd package add to an already > working setup? Some benefit? >
# yum info fail2ban-systemd Name : fail2ban-systemd Arch : noarch Version : 0.9.2 Release : 1.el7 Size : 9.7 k Repo : epel/x86_64 Summary : Systemd journal configuration for Fail2Ban URL : http://fail2ban.sourceforge.net/ License : GPLv2+ Description : This package configures Fail2Ban to use the systemd journal for its log input : by default. In detail: - it installs: # repoquery -l fail2ban-systemd /etc/fail2ban/jail.d/00-systemd.conf which says: # This file is part of the fail2ban-systemd package to configure the use of # the systemd journal as the default backend. You can remove this package # (along with the empty fail2ban meta-package) if you do not want to use the # journal backend [DEFAULT] backend=systemd The problem you can run into using this is that you need a "journalmatch" entry for every jail, which is currently not the case, and in fact impossible for some (apache, etc). -- Orion Poplawski Technical Manager 303-415-9701 x222 NWRA, Boulder/CoRA Office FAX: 303-415-9702 3380 Mitchell Lane [email protected] Boulder, CO 80301 http://www.nwra.com ------------------------------------------------------------------------------ Don't Limit Your Business. Reach for the Cloud. GigeNET's Cloud Solutions provide you with the tools and support that you need to offload your IT needs and focus on growing your business. Configured For All Businesses. Start Your Cloud Today. https://www.gigenetcloud.com/ _______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users
