failed2ban
I received a logcheck mail containing the usual ssh brute force attempts and was wondering why fail2ban no longer triggered.
I only configured shorewall recently and thought it might have something to do with that, but no..
$ tail -f /var/log auth.log /var/log/fail2ban.log
==> /var/log/auth.log <==
Jun 7 23:11:47 socket sshd[7866]: Failed password for andreas from 172.16.1.1 port 39280 ssh2
==> /var/log/fail2ban.log <==
2008-06-08 01:11:48,145 fail2ban.filter : DEBUG /var/log/auth.log has been modified
2008-06-08 01:11:48,145 fail2ban.filter : DEBUG Opened /var/log/auth.log
2008-06-08 01:11:48,145 fail2ban.filter : DEBUG Setting file position to 812904L for /var/log/auth.log
2008-06-08 01:11:48,146 fail2ban.filter.datedetector: DEBUG Sorting the template list
fail2ban-regex matched, the correct file was read, everything seemed fine.
It simply wasn't the right time to ban random ip addresses.
[/misc]
permanent link
More on mutt BTS integration
Recently i added some keyboard bindings to my mutt configuration to automatically download and open a
bug report log from the Debian Bug Tracking System. Thanks to this post i became aware of
the SOAP interface to the BTS which makes it quite easy to retrieve information from the BTS such as
downloading all bugs for a package and group them in a mbox file. The script can be downloaded here.
Using it with mutt works the same as with single bug reports. Set a variable in your muttrc file and source another one to execute
the script with the variable as parameter.
You may also want to do set duplicate_threads=no to have mails to control@b.d.o sorted correctly.
Of course, it can also be adjusted to download, say, all bugs with a certain tag or maintainer
address and have them opened as mbox in mutt. There are still some problems, though. The soap interface (or debbugs)
fails on some bugs and i wasn't able to figure out yet what's causing this errors.
[/debian]
permanent link
New passport - almost!
Thanks to Meike Reichle i tried to order a new travel passport without fingerprints today which was the last opportunity to get one as the new law will be in place from November 1st in germany. I failed miserably.
Since 2005 there is already an RFID chip inside the passport which contains a digital copy of the photo which must fulfill strict requirements which i wasn't able to meet trying it twice with the local photo booth.
In other news, the new gpsdrive package has been accepted yesterday and should be available in unstable soon.
[/misc]
permanent link
New gpsdrive version
An new gpsdrive version (2.10-pre4) has been released last weekend.
It's still a pre-release but has some pretty cool new features.
Most important, gpsdrive now supports Openstreetmap data and on-the-fly map rendering using mapnik. This means you no longer need to take care of downloading all maps in all appropriate zoom levels you might need during your next trip.
The bad thing is, that mapnik uses a postgis/postgresql database while gpsdrive still uses a mysql db for some features. It does work without one, though. However, as far as i know work is in progress to move over to use postgres for all other db stuff, too.
A new debian package is on the way and will hopefully be uploaded soon.
[/debian]
permanent link
Download mbox folder from BTS with mutt
It's a nice feature that you can download a bug report log in mbox format from the Debian BTS and open it with your MUA.
As i usually have mutt open i was wondering how i can do this directly from mutt without switching to another
shell, typing bts --mbox show 666 and ending up in a second mutt instance.
However, this is not so easy as i thought it will be, mostly because you cannot directly ask for user input
(the bug number) in mutt. At least i'm not aware how this is possible.
So i ended up with abusing mutt's feature to include different config files. I added to my muttrc
# set a default bug
set my_bug=128852
set my_bts_cmd="wget -q -O /tmp/bug.mbox \
'http://bugs.debian.org/cgi-bin/bugreport.cgi?mbox=yes;bug="
macro index \CN ":set my_bug="
macro index \CB " \
source ~/.mutt/bts.rc"
wheras bts.rc contains
push "unset wait_key\n \
$my_bts_cmd$my_bug' \
set wait_key\n /tmp/bug.mbox\n"
Beside that there is no error handling propably the most ugly thing is that the quotation marks
around $my_bts_cmd are splitted over different files :-/
However, i can now do in mutt
C-N bug-id
C-B
and have the whole bug report log downloaded and opened in my current mutt session.
[/debian]
permanent link
|