Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Asterisk jail does not protect asterisk manager interface #5703

Closed
stephdl opened this issue Jan 29, 2019 · 6 comments
Closed

Asterisk jail does not protect asterisk manager interface #5703

stephdl opened this issue Jan 29, 2019 · 6 comments
Labels
verified All test cases were verified successfully
Projects
NethServer 7

Comments

@stephdl
Copy link

stephdl commented Jan 29, 2019
edited

Steps to reproduce

asterisk jail does not ban for the asterisk manager interface (AMI).
You can find the log file at https://pastebin.com/GhLSqt4e

Expected behavior

I expect the regex catch the attacker

Actual behavior

the attacker is not banned because the official filter from upstream is not done to match this regex

Components

nethserver-fail2ban

See also

https://community.nethserver.org/t/fail2ban-jail-properties/11831

thank to @Stell0 and Laylow
@stephdl stephdl changed the title FAIL2BAN: asterisk jail doesn' FAIL2BAN: asterisk jail does not ban Jan 29, 2019
@stephdl stephdl changed the title FAIL2BAN: asterisk jail does not ban FAIL2BAN: asterisk jail does not protect asterisk manager interface Jan 29, 2019
@stephdl stephdl changed the title FAIL2BAN: asterisk jail does not protect asterisk manager interface Asterisk jail does not protect asterisk manager interface Jan 29, 2019
@stephdl stephdl self-assigned this Jan 29, 2019
@stephdl stephdl mentioned this issue Jan 29, 2019
Merged
@stephdl stephdl added this to ✋ Needs review in NethServer 7 via automation Jan 29, 2019
@stephdl stephdl moved this from ✋ Needs review to ⚙ Developing in NethServer 7 Jan 29, 2019
@stephdl
Copy link
Author

stephdl commented Jan 29, 2019

log file for QA: https://gist.github.com/25a6f3dd28dec4db426d273480bb9e8e

stephdl added a commit to NethServer/nethserver-fail2ban that referenced this issue Jan 31, 2019
@stephdl
Implement filter to protect asterisk manager interface (AMI) (#53)
0d4db14 
NethServer/dev#5703
@nethbot
Copy link
Member

nethbot commented Jan 31, 2019

in 7.6.1810/testing:

@stephdl
Copy link
Author

stephdl commented Feb 6, 2019

QA

  • Install nethserver-fail2ban with an asterisk instance
  • do some bad login to asterisk manager interface (AMI)
  • after Xban attemps you must be banned

@stephdl stephdl removed their assignment Feb 6, 2019
@stephdl stephdl added the testing Packages are available from testing repositories label Feb 6, 2019
@andrea-marchionni
Copy link

Verified.

@Stell0 Stell0 added verified All test cases were verified successfully and removed testing Packages are available from testing repositories labels Feb 7, 2019
@nethbot
Copy link
Member

nethbot commented Feb 11, 2019

in 7.6.1810/updates:

@stephdl
Copy link
Author

stephdl commented Feb 11, 2019

released as update

@stephdl stephdl closed this as completed Feb 11, 2019
NethServer 7 automation moved this from ⚙ Developing to 🗑 Done Feb 11, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
verified All test cases were verified successfully
Projects
No open projects
NethServer 7
🗑 Done
Milestone
No milestone
Development

No branches or pull requests
4 participants
@stephdl @Stell0 @andrea-marchionni @nethbot