You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I was blocked from accessing the control panel from our IP Address. I found a fail2ban-RECIDIVE ban for my IP and wasn't sure how that happened. After I tried removing the banned IP with v-delete-firewall-ban x.x.x.x RECIDIVE and still not being able to access, I removed the ip manually with iptables -D so I could access again. I wanted to go to the banlist in the admin interface and received an error 500.
Usually that happens if PHP can't parse the json it receives from the hestia command it's running, so i ran v-list-firewall-ban json and looked at the output...
The json entries were not separated by "," so the json was invalid.
It was clear that this code wasn't evaluating correctly, not adding the "," at the end of each entry except the last, so I checked my banlist.conf at $HESTIA/data/firewall/banlist.conf and found this line:
after I removed all the weird blank space, v-list-firewall-ban json returned valid json again:
Describe the bug
I was blocked from accessing the control panel from our IP Address. I found a fail2ban-RECIDIVE ban for my IP and wasn't sure how that happened. After I tried removing the banned IP with
v-delete-firewall-ban x.x.x.x RECIDIVE
and still not being able to access, I removed the ip manually withiptables -D
so I could access again. I wanted to go to the banlist in the admin interface and received an error 500.Usually that happens if PHP can't parse the json it receives from the hestia command it's running, so i ran
v-list-firewall-ban json
and looked at the output...The json entries were not separated by "," so the json was invalid.
It was clear that this code wasn't evaluating correctly, not adding the "," at the end of each entry except the last, so I checked my banlist.conf at $HESTIA/data/firewall/banlist.conf and found this line:
after I removed all the weird blank space, v-list-firewall-ban json returned valid json again:
The question I have is: Why were there NULL-Byte characters in banlist.conf? (Resp: how did they get there?)
I attached the (shortened) file here:
banlist.zip
Also - we should find a way to clean stuff like that.
P.S: The IPs are malicious so I don't care about censoring them.
Tell us how to replicate the bug
$HESTIA/data/firewall/
https://yourserver.com:8083/list/firewall/banlist/
Which components are affected by this bug?
Control Panel Command Line Interface, Control Panel Web Interface, Firewall (Iptables, Fail2ban)
Hestia Control Panel Version
1.8.11
Operating system
Debian 11
Log capture
No response
The text was updated successfully, but these errors were encountered: