Fail2ban error

hallo

ik heb een nieuwe ispconfig server geinstaleerd.

alleen heb ik 1 probleem wat ik ook probeer bij fail2ban, ik krijg deze error

Restarting authentication failure monitor: fail2ban failed! debian

hoop dat iemand me kan helpen

met vriendelijke groet

michael

 

Did you change the fail2ban configuration? If so, what exactly did you change?

Are there any errors in your logs (I think there's a fail2ban log in the /var/log/ directory)?

 

hi falko

i have use this script

http://www.howtoforge.com/perfect-server-debian-squeeze-with-bind-and-courier-ispconfig-3-p5

there is no log

i can't find /var/log/fail2ban

i hope you wil help my

 

What's the output of

Code:

ls -la /var/log/

?

 

hi falko

the output is this


drwxr-xr-x 20 root root 4096 Dec 11 23:00 .
drwxr-xr-x 18 root root 4096 Dec 10 06:01 ..
-rw-r--r-- 1 root root 0 Dec 1 07:57 alternatives.lo g
-rw-r--r-- 1 root root 713 Nov 10 07:52 alternatives.lo g.1
-rw-r--r-- 1 root root 140 Oct 10 07:54 alternatives.lo g.2.gz
-rw-r--r-- 1 root root 207 Sep 30 08:03 alternatives.lo g.3.gz
-rw-r--r-- 1 root root 276 Aug 18 07:35 alternatives.lo g.4.gz
-rw-r--r-- 1 root root 134 Aug 9 17:27 alternatives.lo g.5.gz
-rw-r--r-- 1 root root 178 Jul 17 15:27 alternatives.lo g.6.gz
-rw-r--r-- 1 root root 5557 May 15 2011 alternatives.lo g.7.gz
drwxr-x--- 2 root adm 4096 Dec 11 08:01 apache2
drwxr-xr-x 2 root root 4096 Dec 1 07:56 apt
-rw-r--r-- 1 root root 0 Sep 17 07:47 aptitude
-rw-r--r-- 1 root root 434 Sep 16 19:15 aptitude.1.gz
-rw-r--r-- 1 root root 7253 May 15 2011 aptitude.2.gz
-rw-r----- 1 root adm 451551 Dec 12 00:23 auth.log
-rw-r----- 1 root adm 3045166 Dec 11 08:01 auth.log.1
-rw-r----- 1 root adm 331401 Dec 4 07:58 auth.log.2.gz
-rw-r----- 1 root adm 362760 Nov 27 07:47 auth.log.3.gz
-rw-r----- 1 root adm 691648 Nov 20 07:55 auth.log.4.gz
-rw-rw-rw- 1 root root 0 Dec 10 01:16 autokey-daemon. log
-rw-rw-rw- 1 root root 0 Dec 10 01:07 autokey-daemon. log.old
-rw-r----- 1 root adm 31 May 15 2011 boot
-rw-rw---- 1 root utmp 0 Dec 1 07:57 btmp
-rw-rw---- 1 root utmp 0 Nov 1 08:02 btmp.1
drwxr-xr-x 2 clamav clamav 4096 Dec 11 08:01 clamav
drwxr-xr-x 2 root root 4096 Dec 1 07:56 ConsoleKit
drwxr-xr-x 2 root root 4096 Dec 2 07:54 cups
-rw-r----- 1 root adm 0 Dec 11 08:01 daemon.log
-rw-r----- 1 root adm 86973 Dec 11 08:01 daemon.log.1
-rw-r----- 1 root adm 1566 Dec 1 13:06 daemon.log.2.gz
-rw-r----- 1 root adm 143 Nov 28 03:57 daemon.log.3.gz
-rw-r----- 1 root adm 1011 Nov 17 07:56 daemon.log.4.gz
drwxr-xr-x 2 root root 4096 May 15 2011 dbconfig-common
-rw-r----- 1 root adm 0 Dec 11 08:01 debug
-rw-r----- 1 root adm 16393 Dec 10 01:16 debug.1
-rw-r----- 1 root adm 2450 Dec 9 22:17 debug.2.gz
-rw-r----- 1 root adm 3572 Oct 24 02:24 debug.3.gz
-rw-r----- 1 root adm 1735 Oct 24 00:53 debug.4.gz
-rw-r--r-- 1 root root 140 Dec 11 08:01 dirmngr.log
-rw-r--r-- 1 root root 1202 Dec 11 08:01 dirmngr.log.1
-rw-r--r-- 1 root root 269 Dec 4 07:58 dirmngr.log.2
-rw-r--r-- 1 root root 269 Nov 27 07:47 dirmngr.log.3
-rw-r--r-- 1 root root 269 Nov 20 07:55 dirmngr.log.4
-rw-r----- 1 root adm 25459 Dec 10 01:16 dmesg
-rw-r----- 1 root adm 25588 Dec 10 01:08 dmesg.0
-rw-r----- 1 root adm 7927 Dec 9 22:17 dmesg.1.gz
-rw-r----- 1 root adm 8025 Dec 9 22:14 dmesg.2.gz
-rw-r----- 1 root adm 7956 Oct 24 02:24 dmesg.3.gz
-rw-r----- 1 root adm 8090 Oct 24 02:22 dmesg.4.gz
-rw-r--r-- 1 root root 11538 Dec 11 08:01 dpkg.log
-rw-r--r-- 1 root root 31838 Dec 1 07:56 dpkg.log.1
-rw-r--r-- 1 root root 8717 Oct 30 23:46 dpkg.log.2.gz
-rw-r--r-- 1 root root 2983 Sep 30 08:03 dpkg.log.3.gz
-rw-r--r-- 1 root root 12258 Sep 1 07:50 dpkg.log.4.gz
-rw-r--r-- 1 root root 751 Jul 17 15:27 dpkg.log.5.gz
-rw-r--r-- 1 root root 1391 Jun 19 23:47 dpkg.log.6.gz
-rw-r--r-- 1 root root 103264 May 20 2011 dpkg.log.7.gz
drwxr-s--- 2 Debian-exim adm 4096 May 16 2011 exim4
-rw-r----- 1 root adm 0 Dec 11 08:01 fail2ban.log
-rw-r----- 1 root adm 0 Dec 4 07:58 fail2ban.log.1
-rw-r----- 1 root adm 20 Nov 27 07:47 fail2ban.log.2. gz
-rw-r----- 1 root adm 20 Nov 20 07:55 fail2ban.log.3. gz
-rw-r----- 1 root adm 20 Nov 13 08:02 fail2ban.log.4. gz
-rw-r----- 1 root adm 20 Nov 6 07:50 fail2ban.log.5. gz
-rw-r--r-- 1 root root 162144 Dec 10 03:18 faillog
-rw-r--r-- 1 root root 2203 Oct 6 07:53 fontconfig.log
drwxr-xr-x 2 root root 4096 May 15 2011 fsck
drwxrwx--T 2 root Debian-gdm 4096 Dec 10 01:16 gdm3
drwxr-xr-x 3 root root 4096 May 15 2011 installer
drwxr-xr-x 3 root root 4096 Aug 15 00:30 ispconfig
-rw-r--r-- 1 root root 44887 Dec 10 01:26 ispconfig_insta ll.log
-rw-r----- 1 root adm 0 Dec 11 08:01 kern.log
-rw-r----- 1 root adm 76019 Dec 10 01:44 kern.log.1
-rw-r----- 1 root adm 16772 Dec 9 22:17 kern.log.2.gz
-rw-r----- 1 root adm 294 Dec 1 13:00 kern.log.3.gz
-rw-r----- 1 root adm 106 Nov 2 19:25 kern.log.4.gz
-rw-rw-r-- 1 root utmp 1479564 Dec 12 00:23 lastlog
-rw-r----- 1 root adm 0 Dec 11 08:01 lpr.log
-rw-r----- 1 root adm 538 Dec 10 01:16 lpr.log.1
-rw-r----- 1 root adm 143 Dec 9 22:17 lpr.log.2.gz
-rw-r----- 1 root adm 175 Oct 24 02:24 lpr.log.3.gz
-rw-r----- 1 root adm 128 Oct 24 00:50 lpr.log.4.gz
-rw-r--r-- 1 root adm 35280 Dec 12 00:20 mail.err
-rw-r--r-- 1 root adm 230485 Dec 11 08:00 mail.err.1
-rw-r--r-- 1 root adm 6800 Dec 4 07:55 mail.err.2.gz
-rw-r--r-- 1 root adm 11781 Nov 27 07:45 mail.err.3.gz
-rw-r--r-- 1 root adm 13316 Nov 20 07:55 mail.err.4.gz
-rw-r----- 1 root adm 211350 Dec 12 00:20 mail.info
-rw-r----- 1 root adm 1286239 Dec 11 08:00 mail.info.1
-rw-r----- 1 root adm 545554 Dec 4 07:55 mail.info.2.gz
-rw-r----- 1 root adm 3444953 Nov 27 07:45 mail.info.3.gz
-rw-r----- 1 root adm 9876849 Nov 20 07:55 mail.info.4.gz
-rw-r--r-- 1 root adm 339158 Dec 12 00:20 mail.log
-rw-r--r-- 1 root adm 1879602 Dec 11 08:00 mail.log.1
-rw-r--r-- 1 root adm 603548 Dec 4 07:55 mail.log.2.gz
-rw-r--r-- 1 root adm 3514182 Nov 27 07:45 mail.log.3.gz
-rw-r--r-- 1 root adm 10009696 Nov 20 07:55 mail.log.4.gz
-rw-r--r-- 1 root adm 43335 Dec 12 00:20 mail.warn
-rw-r--r-- 1 root adm 284077 Dec 11 08:00 mail.warn.1
-rw-r--r-- 1 root adm 29176 Dec 4 07:55 mail.warn.2.gz
-rw-r--r-- 1 root adm 68324 Nov 27 07:45 mail.warn.3.gz
-rw-r--r-- 1 root adm 59685 Nov 20 07:55 mail.warn.4.gz
-rw-r--r-- 1 root adm 1230280 Dec 12 00:21 messages
-rw-r--r-- 1 root adm 4683277 Dec 11 08:01 messages.1
-rw-r--r-- 1 root adm 19043 Dec 4 07:58 messages.2.gz
-rw-r--r-- 1 root adm 16928 Nov 27 07:47 messages.3.gz
-rw-r--r-- 1 root adm 16698 Nov 20 07:55 messages.4.gz
drwxr-s--- 2 mysql adm 4096 May 15 2011 mysql
-rw-r----- 1 mysql adm 0 May 15 2011 mysql.err
-rw-r----- 1 mysql adm 0 Dec 11 08:01 mysql.log
-rw-r----- 1 mysql adm 20 Dec 9 22:33 mysql.log.1.gz
-rw-r----- 1 mysql adm 20 Dec 7 07:52 mysql.log.2.gz
-rw-r----- 1 mysql adm 20 Dec 6 07:59 mysql.log.3.gz
-rw-r----- 1 mysql adm 20 Dec 5 07:36 mysql.log.4.gz
-rw-r----- 1 mysql adm 20 Dec 4 07:58 mysql.log.5.gz
-rw-r----- 1 mysql adm 20 Dec 3 07:46 mysql.log.6.gz
-rw-r----- 1 mysql adm 20 Dec 2 07:54 mysql.log.7.gz
drwxr-xr-x 2 root root 4096 May 15 2011 news
drwxr-xr-x 2 ntp ntp 4096 Oct 17 2010 ntpstats
-rw-r--r-- 1 root root 270 Dec 10 01:16 pm-powersave.lo g
-rw-r--r-- 1 root root 270 Dec 9 22:17 pm-powersave.lo g.1
-rw-r--r-- 1 root root 114 Oct 24 02:24 pm-powersave.lo g.2.gz
-rw-r--r-- 1 root root 106 Oct 11 03:46 pm-powersave.lo g.3.gz
-rw-r--r-- 1 root root 118 Aug 27 02:37 pm-powersave.lo g.4.gz
drwxr-xr-x 2 root root 4096 Dec 11 08:01 pure-ftpd
-rw-r--r-- 1 root root 0 May 15 2011 pycentral.log
-rw------- 1 root root 122999 Dec 11 23:08 rkhunter.log
-rw------- 1 root root 123479 Dec 10 23:08 rkhunter.log.1
-rw------- 1 root root 15798 Dec 3 23:07 rkhunter.log.2. gz
-rw------- 1 root root 15905 Nov 26 23:07 rkhunter.log.3. gz
-rw------- 1 root root 15975 Nov 19 23:08 rkhunter.log.4. gz
-rw------- 1 root root 5391 Dec 11 08:10 rkhunter.log.ol d
drwx------ 2 speech-dispatcher root 4096 Feb 2 2011 speech-dispatch er
drwxr-xr-x 2 root root 4096 Aug 7 2009 suphp
-rw-r----- 1 root adm 1986838 Dec 12 00:23 syslog
-rw-r----- 1 root adm 6250120 Dec 11 08:01 syslog.1
-rw-r----- 1 root adm 44066 Dec 9 22:33 syslog.2.gz
-rw-r----- 1 root adm 44316 Dec 7 07:52 syslog.3.gz
-rw-r----- 1 root adm 45057 Dec 6 07:59 syslog.4.gz
-rw-r----- 1 root adm 65493 Dec 5 07:36 syslog.5.gz
-rw-r----- 1 root adm 111705 Dec 4 07:58 syslog.6.gz
-rw-r----- 1 root adm 110239 Dec 3 07:46 syslog.7.gz
drwxr-xr-x 2 root root 12288 Dec 11 08:01 unattended-upgr ades
-rw-r----- 1 root adm 7414 Dec 12 00:16 user.log
-rw-r----- 1 root adm 45435 Dec 11 07:56 user.log.1
-rw-r----- 1 root adm 2821 Dec 4 07:51 user.log.2.gz
-rw-r----- 1 root adm 2623 Nov 27 07:41 user.log.3.gz
-rw-r----- 1 root adm 3188 Nov 20 07:50 user.log.4.gz
-rw-rw-r-- 1 root utmp 50304 Dec 12 00:23 wtmp
-rw-rw-r-- 1 root utmp 768 Nov 2 19:40 wtmp.1
-rw-r--r-- 1 root root 24136 Dec 11 08:01 Xorg.0.log
-rw-r--r-- 1 root root 24277 Dec 10 01:15 Xorg.0.log.old
-rw-r--r-- 1 root root 24278 Jul 29 01:52 Xorg.1.log
-rw-r--r-- 1 root root 24277 Jul 29 01:52 Xorg.1.log.old
-rw-r--r-- 1 root root 24268 May 15 2011 Xorg.2.log

 

Ok, fail2ban.log seems to be empty. Are there any fail2ban error messages in /var/log/messages or /var/log/syslog?

 

how i see that????

 

Try

Code:

grep -i fail2ban /var/log/messages

and

Code:

grep -i fail2ban /var/log/syslog

 

Where, exactly, are you seeing this error message?

Code:

Restarting authentication failure monitor: fail2ban failed! debian

Is that the complete message?

Also, if you temporarily rename /etc/fail2ban/jail.local, e.g.

Code:

# mv /etc/fail2ban/jail.local /etc/fail2ban/jail.local.bak

and restart fail2ban with

Code:

# service fail2ban restart

does the error still occur?

 

hi falko

the output is


total 54472
drwxr-xr-x 20 root root 4096 Dec 15 23:00 .
drwxr-xr-x 18 root root 4096 Dec 10 06:01 ..
-rw-r--r-- 1 root root 0 Dec 1 07:57 alternatives.log
-rw-r--r-- 1 root root 713 Nov 10 07:52 alternatives.log.1
-rw-r--r-- 1 root root 140 Oct 10 07:54 alternatives.log.2.gz
-rw-r--r-- 1 root root 207 Sep 30 08:03 alternatives.log.3.gz
-rw-r--r-- 1 root root 276 Aug 18 07:35 alternatives.log.4.gz
-rw-r--r-- 1 root root 134 Aug 9 17:27 alternatives.log.5.gz
-rw-r--r-- 1 root root 178 Jul 17 15:27 alternatives.log.6.gz
-rw-r--r-- 1 root root 5557 May 15 2011 alternatives.log.7.gz
drwxr-x--- 2 root adm 4096 Dec 11 08:01 apache2
drwxr-xr-x 2 root root 4096 Dec 1 07:56 apt
-rw-r--r-- 1 root root 0 Sep 17 07:47 aptitude
-rw-r--r-- 1 root root 434 Sep 16 19:15 aptitude.1.gz
-rw-r--r-- 1 root root 7253 May 15 2011 aptitude.2.gz
-rw-r----- 1 root adm 3761101 Dec 16 00:37 auth.log
-rw-r----- 1 root adm 3045166 Dec 11 08:01 auth.log.1
-rw-r----- 1 root adm 331401 Dec 4 07:58 auth.log.2.gz
-rw-r----- 1 root adm 362760 Nov 27 07:47 auth.log.3.gz
-rw-r----- 1 root adm 691648 Nov 20 07:55 auth.log.4.gz
-rw-rw-rw- 1 root root 0 Dec 10 01:16 autokey-daemon.log
-rw-rw-rw- 1 root root 0 Dec 10 01:07 autokey-daemon.log.old
-rw-r----- 1 root adm 31 May 15 2011 boot
-rw-rw---- 1 root utmp 0 Dec 1 07:57 btmp
-rw-rw---- 1 root utmp 0 Nov 1 08:02 btmp.1
drwxr-xr-x 2 clamav clamav 4096 Dec 11 08:01 clamav
drwxr-xr-x 2 root root 4096 Dec 1 07:56 ConsoleKit
drwxr-xr-x 2 root root 4096 Dec 2 07:54 cups
-rw-r----- 1 root adm 113 Dec 15 07:05 daemon.log
-rw-r----- 1 root adm 86973 Dec 11 08:01 daemon.log.1
-rw-r----- 1 root adm 1566 Dec 1 13:06 daemon.log.2.gz
-rw-r----- 1 root adm 143 Nov 28 03:57 daemon.log.3.gz
-rw-r----- 1 root adm 1011 Nov 17 07:56 daemon.log.4.gz
drwxr-xr-x 2 root root 4096 May 15 2011 dbconfig-common
-rw-r----- 1 root adm 0 Dec 11 08:01 debug
-rw-r----- 1 root adm 16393 Dec 10 01:16 debug.1
-rw-r----- 1 root adm 2450 Dec 9 22:17 debug.2.gz
-rw-r----- 1 root adm 3572 Oct 24 02:24 debug.3.gz
-rw-r----- 1 root adm 1735 Oct 24 00:53 debug.4.gz
-rw-r--r-- 1 root root 140 Dec 11 08:01 dirmngr.log
-rw-r--r-- 1 root root 1202 Dec 11 08:01 dirmngr.log.1
-rw-r--r-- 1 root root 269 Dec 4 07:58 dirmngr.log.2
-rw-r--r-- 1 root root 269 Nov 27 07:47 dirmngr.log.3
-rw-r--r-- 1 root root 269 Nov 20 07:55 dirmngr.log.4
-rw-r----- 1 root adm 25459 Dec 10 01:16 dmesg
-rw-r----- 1 root adm 25588 Dec 10 01:08 dmesg.0
-rw-r----- 1 root adm 7927 Dec 9 22:17 dmesg.1.gz
-rw-r----- 1 root adm 8025 Dec 9 22:14 dmesg.2.gz
-rw-r----- 1 root adm 7956 Oct 24 02:24 dmesg.3.gz
-rw-r----- 1 root adm 8090 Oct 24 02:22 dmesg.4.gz
-rw-r--r-- 1 root root 11538 Dec 11 08:01 dpkg.log
-rw-r--r-- 1 root root 31838 Dec 1 07:56 dpkg.log.1
-rw-r--r-- 1 root root 8717 Oct 30 23:46 dpkg.log.2.gz
-rw-r--r-- 1 root root 2983 Sep 30 08:03 dpkg.log.3.gz
-rw-r--r-- 1 root root 12258 Sep 1 07:50 dpkg.log.4.gz
-rw-r--r-- 1 root root 751 Jul 17 15:27 dpkg.log.5.gz
-rw-r--r-- 1 root root 1391 Jun 19 23:47 dpkg.log.6.gz
-rw-r--r-- 1 root root 103264 May 20 2011 dpkg.log.7.gz
drwxr-s--- 2 Debian-exim adm 4096 May 16 2011 exim4
-rw-r----- 1 root adm 618 Dec 16 00:36 fail2ban.log
-rw-r----- 1 root adm 0 Dec 4 07:58 fail2ban.log.1
-rw-r----- 1 root adm 20 Nov 27 07:47 fail2ban.log.2.gz
-rw-r----- 1 root adm 20 Nov 20 07:55 fail2ban.log.3.gz
-rw-r----- 1 root adm 20 Nov 13 08:02 fail2ban.log.4.gz
-rw-r----- 1 root adm 20 Nov 6 07:50 fail2ban.log.5.gz
-rw-r--r-- 1 root root 162144 Dec 10 03:18 faillog
-rw-r--r-- 1 root root 2203 Oct 6 07:53 fontconfig.log
drwxr-xr-x 2 root root 4096 May 15 2011 fsck
drwxrwx--T 2 root Debian-gdm 4096 Dec 10 01:16 gdm3
drwxr-xr-x 3 root root 4096 May 15 2011 installer
drwxr-xr-x 3 root root 4096 Aug 15 00:30 ispconfig
-rw-r--r-- 1 root root 44887 Dec 10 01:26 ispconfig_install.log
-rw-r----- 1 root adm 0 Dec 11 08:01 kern.log
-rw-r----- 1 root adm 76019 Dec 10 01:44 kern.log.1
-rw-r----- 1 root adm 16772 Dec 9 22:17 kern.log.2.gz
-rw-r----- 1 root adm 294 Dec 1 13:00 kern.log.3.gz
-rw-r----- 1 root adm 106 Nov 2 19:25 kern.log.4.gz
-rw-rw-r-- 1 root utmp 1479564 Dec 16 00:35 lastlog
-rw-r----- 1 root adm 0 Dec 11 08:01 lpr.log
-rw-r----- 1 root adm 538 Dec 10 01:16 lpr.log.1
-rw-r----- 1 root adm 143 Dec 9 22:17 lpr.log.2.gz
-rw-r----- 1 root adm 175 Oct 24 02:24 lpr.log.3.gz
-rw-r----- 1 root adm 128 Oct 24 00:50 lpr.log.4.gz
-rw-r--r-- 1 root adm 277367 Dec 16 00:35 mail.err
-rw-r--r-- 1 root adm 230485 Dec 11 08:00 mail.err.1
-rw-r--r-- 1 root adm 6800 Dec 4 07:55 mail.err.2.gz
-rw-r--r-- 1 root adm 11781 Nov 27 07:45 mail.err.3.gz
-rw-r--r-- 1 root adm 13316 Nov 20 07:55 mail.err.4.gz
-rw-r----- 1 root adm 1535467 Dec 16 00:35 mail.info
-rw-r----- 1 root adm 1286239 Dec 11 08:00 mail.info.1
-rw-r----- 1 root adm 545554 Dec 4 07:55 mail.info.2.gz
-rw-r----- 1 root adm 3444953 Nov 27 07:45 mail.info.3.gz
-rw-r----- 1 root adm 9876849 Nov 20 07:55 mail.info.4.gz
-rw-r--r-- 1 root adm 2455538 Dec 16 00:35 mail.log
-rw-r--r-- 1 root adm 1879602 Dec 11 08:00 mail.log.1
-rw-r--r-- 1 root adm 603548 Dec 4 07:55 mail.log.2.gz
-rw-r--r-- 1 root adm 3514182 Nov 27 07:45 mail.log.3.gz
-rw-r--r-- 1 root adm 10009696 Nov 20 07:55 mail.log.4.gz
-rw-r--r-- 1 root adm 299884 Dec 16 00:35 mail.warn
-rw-r--r-- 1 root adm 284077 Dec 11 08:00 mail.warn.1
-rw-r--r-- 1 root adm 29176 Dec 4 07:55 mail.warn.2.gz
-rw-r--r-- 1 root adm 68324 Nov 27 07:45 mail.warn.3.gz
-rw-r--r-- 1 root adm 59685 Nov 20 07:55 mail.warn.4.gz
-rw-r--r-- 1 root adm 1474507 Dec 16 00:35 messages
-rw-r--r-- 1 root adm 4683277 Dec 11 08:01 messages.1
-rw-r--r-- 1 root adm 19043 Dec 4 07:58 messages.2.gz
-rw-r--r-- 1 root adm 16928 Nov 27 07:47 messages.3.gz
-rw-r--r-- 1 root adm 16698 Nov 20 07:55 messages.4.gz
drwxr-s--- 2 mysql adm 4096 May 15 2011 mysql
-rw-r----- 1 mysql adm 0 May 15 2011 mysql.err
-rw-r----- 1 mysql adm 0 Dec 15 07:35 mysql.log
-rw-r----- 1 mysql adm 20 Dec 14 08:03 mysql.log.1.gz
-rw-r----- 1 mysql adm 20 Dec 13 07:35 mysql.log.2.gz
-rw-r----- 1 mysql adm 20 Dec 12 07:55 mysql.log.3.gz
-rw-r----- 1 mysql adm 20 Dec 11 08:01 mysql.log.4.gz
-rw-r----- 1 mysql adm 20 Dec 9 22:33 mysql.log.5.gz
-rw-r----- 1 mysql adm 20 Dec 7 07:52 mysql.log.6.gz
-rw-r----- 1 mysql adm 20 Dec 6 07:59 mysql.log.7.gz
drwxr-xr-x 2 root root 4096 May 15 2011 news
drwxr-xr-x 2 ntp ntp 4096 Oct 17 2010 ntpstats
-rw-r--r-- 1 root root 270 Dec 10 01:16 pm-powersave.log
-rw-r--r-- 1 root root 270 Dec 9 22:17 pm-powersave.log.1
-rw-r--r-- 1 root root 114 Oct 24 02:24 pm-powersave.log.2.gz
-rw-r--r-- 1 root root 106 Oct 11 03:46 pm-powersave.log.3.gz
-rw-r--r-- 1 root root 118 Aug 27 02:37 pm-powersave.log.4.gz
drwxr-xr-x 2 root root 4096 Dec 11 08:01 pure-ftpd
-rw-r--r-- 1 root root 0 May 15 2011 pycentral.log
-rw------- 1 root root 122999 Dec 15 23:07 rkhunter.log
-rw------- 1 root root 123479 Dec 10 23:08 rkhunter.log.1
-rw------- 1 root root 15798 Dec 3 23:07 rkhunter.log.2.gz
-rw------- 1 root root 15905 Nov 26 23:07 rkhunter.log.3.gz
-rw------- 1 root root 15975 Nov 19 23:08 rkhunter.log.4.gz
-rw------- 1 root root 243117 Dec 15 07:43 rkhunter.log.old
drwx------ 2 speech-dispatcher root 4096 Feb 2 2011 speech-dispatcher
drwxr-xr-x 2 root root 4096 Aug 7 2009 suphp
-rw-r----- 1 root adm 807806 Dec 16 00:37 syslog
-rw-r----- 1 root adm 1248171 Dec 15 07:35 syslog.1
-rw-r----- 1 root adm 78235 Dec 14 08:03 syslog.2.gz
-rw-r----- 1 root adm 90626 Dec 13 07:35 syslog.3.gz
-rw-r----- 1 root adm 174453 Dec 12 07:55 syslog.4.gz
-rw-r----- 1 root adm 478974 Dec 11 08:01 syslog.5.gz
-rw-r----- 1 root adm 44066 Dec 9 22:33 syslog.6.gz
-rw-r----- 1 root adm 44316 Dec 7 07:52 syslog.7.gz
drwxr-xr-x 2 root root 12288 Dec 15 07:35 unattended-upgrades
-rw-r----- 1 root adm 49080 Dec 16 00:27 user.log
-rw-r----- 1 root adm 45435 Dec 11 07:56 user.log.1
-rw-r----- 1 root adm 2821 Dec 4 07:51 user.log.2.gz
-rw-r----- 1 root adm 2623 Nov 27 07:41 user.log.3.gz
-rw-r----- 1 root adm 3188 Nov 20 07:50 user.log.4.gz
-rw-rw-r-- 1 root utmp 52608 Dec 16 00:35 wtmp
-rw-rw-r-- 1 root utmp 768 Nov 2 19:40 wtmp.1
-rw-r--r-- 1 root root 24136 Dec 11 08:01 Xorg.0.log
-rw-r--r-- 1 root root 24277 Dec 10 01:15 Xorg.0.log.old
-rw-r--r-- 1 root root 24278 Jul 29 01:52 Xorg.1.log
-rw-r--r-- 1 root root 24277 Jul 29 01:52 Xorg.1.log.old
-rw-r--r-- 1 root root 24268 May 15 2011 Xorg.2.log


i think that is the same??

 

Try

Code:

grep -i fail2ban /var/log/messages

and

Code:

grep -i fail2ban /var/log/syslog

 

thanks falko

problem solved

 

Hi Nokia80, can you tell us how did you solve the problem?
thanks

 

i have uninstal fail2ban en re install it, now it works

 

Well, did you follow howtoforge's tutorial to reinstall?
And, please, tell me which commands did you use to uninstall it...

 

heyaz

problem seems to be in the spelling of the filters, at least that did it for me.

following the tut we're supposed to have

Code:

[[COLOR="Red"]pureftpd[/COLOR]]

enabled  = true
port     = ftp
filter   = [COLOR="Red"]pureftpd[/COLOR]
logpath  = /var/log/syslog
maxretry = 3

i made mine look

Code:

[[COLOR="SeaGreen"]pure-ftpd[/COLOR]]

enabled  = true
port     = ftp
filter   = [COLOR="SeaGreen"]pure-ftpd[/COLOR]
logpath  = /var/log/syslog
maxretry = 3

because a ls filter.d listed pure-ftpd.conf instead of pureftpd.conf
don't know why no errors at all have been logged tho

hope this helps,
regards,
alex