New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Asterisk jail does not protect asterisk manager interface #5703

Closed
stephdl opened this Issue Jan 29, 2019 · 6 comments

Comments

4 participants
@stephdl
Copy link

stephdl commented Jan 29, 2019

Steps to reproduce

asterisk jail does not ban for the asterisk manager interface (AMI).
You can find the log file at https://pastebin.com/GhLSqt4e

Expected behavior

I expect the regex catch the attacker

Actual behavior

the attacker is not banned because the official filter from upstream is not done to match this regex

Components

nethserver-fail2ban

See also

https://community.nethserver.org/t/fail2ban-jail-properties/11831


thank to @Stell0 and Laylow

@stephdl stephdl changed the title FAIL2BAN: asterisk jail doesn' FAIL2BAN: asterisk jail does not ban Jan 29, 2019

@stephdl stephdl changed the title FAIL2BAN: asterisk jail does not ban FAIL2BAN: asterisk jail does not protect asterisk manager interface Jan 29, 2019

@stephdl stephdl changed the title FAIL2BAN: asterisk jail does not protect asterisk manager interface Asterisk jail does not protect asterisk manager interface Jan 29, 2019

@stephdl stephdl self-assigned this Jan 29, 2019

@stephdl stephdl added this to ✋ Needs review in NethServer 7 via automation Jan 29, 2019

@stephdl stephdl moved this from ✋ Needs review to ⚙ Developing in NethServer 7 Jan 29, 2019

@stephdl

This comment has been minimized.

Copy link
Author

stephdl commented Jan 29, 2019

stephdl added a commit to NethServer/nethserver-fail2ban that referenced this issue Jan 31, 2019

@nethbot

This comment has been minimized.

Copy link
Member

nethbot commented Jan 31, 2019

in 7.6.1810/testing:

@stephdl

This comment has been minimized.

Copy link
Author

stephdl commented Feb 6, 2019

QA

  • Install nethserver-fail2ban with an asterisk instance
  • do some bad login to asterisk manager interface (AMI)
  • after Xban attemps you must be banned

@stephdl stephdl removed their assignment Feb 6, 2019

@stephdl stephdl added the testing label Feb 6, 2019

@andrea-marchionni

This comment has been minimized.

Copy link

andrea-marchionni commented Feb 7, 2019

Verified.

@Stell0 Stell0 added verified and removed testing labels Feb 7, 2019

@nethbot

This comment has been minimized.

Copy link
Member

nethbot commented Feb 11, 2019

in 7.6.1810/updates:

@stephdl

This comment has been minimized.

Copy link
Author

stephdl commented Feb 11, 2019

released as update

@stephdl stephdl closed this Feb 11, 2019

NethServer 7 automation moved this from ⚙ Developing to 🗑 Done Feb 11, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment