search

YunoHost-Apps / monitorix_ynh

Monitorix package for YunoHost
GNU Affero General Public License v3.0
3 stars 10 forks source link

Erroneous `[sshd-ddos]` and `[postfix-sasl]` entries in Monitorix graphs configuration for Fail2ban #54

Closed pacalet closed 5 months ago

pacalet commented 7 months ago

Yunohost version: 11.2.9.1 (stable) Monitorix version: 3.15.0 Fail2ban version: v0.11.2

In /etc/monitorix/monitorix.conf the current configuration for Fail2ban is:

# FAIL2BAN graph
# -----------------------------------------------------------------------------
<fail2ban>
        list = Overload / Abuse, YunoHost, Mail, Default, SSH, Apps
        <desc>
                0 = [recidive], [pam-generic]
                1 = [yunohost]
                2 = [postfix], [postfix-sasl], [dovecot]
                3 = [nginx-http-auth]
                4 = [sshd], [sshd-ddos]
                5 = [gitea], [nextcloud], [sasl]
        </desc>
        graphs_per_row = 2
        rigid = 0
        limit = 100
</fail2ban>

As the fail2ban configuration does not provide [sshd-ddos] or [postfix-sasl] jails, this produce warnings in the fail2ban logs:

[2331]: WARNING Command ['status', 'postfix-sasl'] has failed. Received UnknownJailException('postfix-sasl')
[2331]: WARNING Command ['status', 'sshd-ddos'] has failed. Received UnknownJailException('sshd-ddos')

Suggestion: remove these [sshd-ddos] and [postfix-sasl] entries.

Josue-T commented 5 months ago

should be fixed by #55