Here's a real one from an outside IP:
2016-05-09 15:54:36,238 fail2ban.actions [28520]: ERROR Failed
to execute ban jail 'sshd' action 'xarf-login-attack' info
'CallingMap({'ipjailmatches': <function <lambda> at 0x7fb60be59758>,
'matches': '2016-05-09T04:53:54.418814 host.private sshd[5351]: Invalid
user admin from 88.135.140.111\n2016-05-09T04:53:54.422425 host.private
sshd[5351]: pam_unix(sshd:auth): authentication failure; logname= uid=0
euid=0 tty=ssh ruser= rhost=88.135.140.111\n2016-05-09T04:53:56.128375
host.private sshd[5351]: Failed password for invalid user admin from
88.135.140.111 port 3316 ssh2', 'ip': '88.135.140.111', 'ipmatches':
<function <lambda> at 0x7fb60be59668>, 'ipfailures': <function <lambda>
at 0x7fb60be597d0>, 'time': 1462823676.131133, 'failures': 3,
'ipjailfailures': <function <lambda> at 0x7fb60be59848>})': 'bool'
object is not iterable
On Thu, 2016-05-12 at 19:04 +0100, Nick Howitt wrote:
> From what you posted, it looks like your ignoreip range covers the ip
> detected so it is .......... ignored.
>
> On 12/05/2016 18:51, Daniel L. Srebnick wrote:
> > Is anyone out there using xarf-login-attack? Mighty quiet since my
> > initial inquiry and could use some assistance here, even if it is
> > direction to file a bug report.
> >
> > On Mon, 2016-05-09 at 18:41 -0400, Daniel L. Srebnick wrote:
> >
> > snip...snip for brevity
> >
> > > Seems like ipmatches, ipfailures, and ipjailfailures are not
> > > being
> > > found, causing the failure.
> > >
> > > All suggestions appreciated please!
> > >
> > >
> > -----------------------------------------------------------------
> > -------------
> > Mobile security can be enabling, not merely restricting. Employees
> > who
> > bring their own devices (BYOD) to work are irked by the imposition
> > of MDM
> > restrictions. Mobile Device Manager Plus allows you to control only
> > the
> > apps on BYO-devices by containerizing them, leaving personal data
> > untouched!
> > https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
> > _______________________________________________
> > Fail2ban-users mailing list
> > [email protected]
> > https://lists.sourceforge.net/lists/listinfo/fail2ban-users
> ------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
