fail2ban.actions.action: ERROR

Posted on 2012-02-18 [Saturday] by Jay Jay

Found some discussion on dealing with “fail2ban.actions.action: ERROR” errors from fail2ban. Basically there’s a race condition and a few suggestions to deal with it. One is to modify /usr/bin/fail2ban-client like this:

def __processCmd(self, cmd, showRet = True):
	beautifier = Beautifier()
	for c in cmd:
		time.sleep(0.1)
		beautifier.setInputCmd(c)

But the other one, that I think I like better, is to edit /etc/fail2ban/actions.d/iptables-multiport.conf to include a call to sleep for a random time up to three seconds:

 actionstart =   sleep `perl -e 'print rand(3);'`
             iptables -N fail2ban-<name>
             iptables -A fail2ban-<name> -j RETURN
             iptables -I INPUT -p <protocol> -m multiport --dports <port> -j fail2ban-<name>

Password Encryption, Hashing, Salting Explained

Posted on 2012-02-17 [Friday] by Jay Jay

I was looking for a good overview article that explained the process of password hashing and I found Password Encryption, Hashing, Salting Explained which was a pretty good run down.

On a related note I reread the Wikipedia page on HMAC.

Getting absolute path from relative path in Bash

Posted on 2012-02-17 [Friday] by Jay Jay

I was writing a shell script and I wanted to change directory. But before I changed directory I wanted to get the absolute path to a file relative to the current directory so that I could access the file again later. I learned that you can do this in Bash with the readlink facility, passing in the -f command line switch, i.e.:

 $ readlink -f ./some/path

MySQL Encryption and Compression Functions

Posted on 2012-02-17 [Friday] by Jay Jay

Found a list of MySQL Encryption and Compression Functions today. Handy.

Apache 2 with SSL/TLS: Step-by-Step

Posted on 2012-02-09 [Thursday] by Jay Jay

Reading a series of articles, Apache 2 with SSL/TLS: Step-by-Step:

I’ve done all this before. Just checking if I’ve missed anything. Might have a play with client certificates. Haven’t used them before.

Postfix Virtual Mailboxes and Procmail Filtering

Posted on 2012-02-09 [Thursday] by Jay Jay

Am interested in getting procmail to work with my Postfix/Courier setup. Am using virtual domains/aliases/mailboxes stored in a MySQL database and a Maildir file system. Have only just begun my investigations. So far I’ve found:

Security considerations for find

Posted on 2012-02-09 [Thursday] by Jay Jay

Read about the security considerations for find. Find is a *nix tool for searching though directories for files and filtering them to build lists or run commands.

While I’m here I might as well show you my latest find command, I think it’s a beauty. :)

sudo find . \
  \( \( \( \! -user jj5 \) -or \( \! -group jj5 \) \) \
    -execdir chown jj5:jj5 '{}' \+ \) , \
  \( \( -type d \( \! -perm -u+rwx \) \) \
    -execdir chmod u+rwx '{}' \+ \) , \
  \( \( -type f \( \! -perm -u+rw \) \) \
    -execdir chmod u+rw '{}' \+ \)

Postfix and Unsolicited Commercial Email (UCE, aka SPAM)

Posted on 2012-02-09 [Thursday] by Jay Jay

Read My Understanding Of How UCE Actually Works which was a really helpful and enlightening article. (I saved a local copy.)

Also read Postfix Configuration – UCE Controls.

Apache UseCanonicalName Directive

Posted on 2012-02-09 [Thursday] by Jay Jay

Reading about the Apache UseCanonicalName configuration directive. Don’t think I’ll be using it.

Apache Performance Tuning

Posted on 2012-02-09 [Thursday] by Jay Jay

Reading about Apache Performance Tuning. Don’t get the feeling like I’ve learned any tricks that will make much difference.

M	T	W	T	F	S	S
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30	31

John's blog

Talking about technology (mostly)

Category Archives: Programming

fail2ban.actions.action: ERROR

Password Encryption, Hashing, Salting Explained

Getting absolute path from relative path in Bash

MySQL Encryption and Compression Functions

Apache 2 with SSL/TLS: Step-by-Step

Postfix Virtual Mailboxes and Procmail Filtering

Security considerations for find

Postfix and Unsolicited Commercial Email (UCE, aka SPAM)

Apache UseCanonicalName Directive

Apache Performance Tuning