-
-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Redundant setting in jail.conf for extended ban? #2652
Comments
|
I've modified the sendmail-whois.conf to contain and I'm getting weird results:
I can confirm that the ban time is increasing every time, but in the mail it does not always. Am I missing something, or is this a bug? |
Because the prolongation is made completely asynchronous (intruder should be blocked as soon as possible), the ban can occur before the bantime gets really increased. |
Hi!
I was looking into the new
bantime.increment
feature and now I have a couple of questions:jail.conf
still contains the[recidive]
part which was used to check selflog to ban previously banned ips, but the newbantime.incement
is exactly for that. Isn't this redundant now?bantime.increment
comments do not talk about how it relates tofindtime
andmaxretry
. If the first ban is over, then the second one will immediately be set as soon as it is detected, or it has to happen infindtime
formaxretry
and then it will be set with an increased time?banTime * 1, 2, 4, 8, 16, 32...
which for me means that this can be continued indefinitely but#bantime.formula = ban.Time * (1<<(ban.Count if ban.Count<20 else 20)) * banFactor
shows that it'll be maxed out at 2^20. Which one is true?bantime.multipliers
have indefinite number of multipliers or only 20?The text was updated successfully, but these errors were encountered: