Re: Fail2Ban Question: Can I do this without restarting the service?

To: debian-user@lists.debian.org
Subject: Re: Fail2Ban Question: Can I do this without restarting the service?
From: Brian <ad44@cityscape.co.uk>
Date: Sat, 18 Aug 2018 19:00:31 +0100
Message-id: <[🔎] 18082018185532.3ee122a83e3e@desktop.copernicus.org.uk>
In-reply-to: <[🔎] 3b25a427-d73e-7d71-1591-0fc1d434ebcf@mail.com>
References: <[🔎] 4cddbaa0-29b0-a765-a765-a08220a08301@sitesplace.net> <[🔎] 20180816170055.GI9691@sherohman.org> <[🔎] 08ca210b-0276-a067-7925-616d4d80235a@sitesplace.net> <[🔎] 20180817145500.GL9691@sherohman.org> <[🔎] 0ed84c7a-ecff-7ab4-43ad-31bf84c8f37b@sitesplace.net> <[🔎] d4d8c450-1cc9-f570-b2b6-758c40aa5868@mail.com> <[🔎] 17082018183239.7b023cc2b874@desktop.copernicus.org.uk> <[🔎] 3b25a427-d73e-7d71-1591-0fc1d434ebcf@mail.com>

On Sat 18 Aug 2018 at 17:55:50 +0200, john doe wrote:

> On 8/17/2018 7:35 PM, Brian wrote:
> > On Fri 17 Aug 2018 at 19:16:07 +0200, john doe wrote:
> > 
> > > Also, a server without firewall capibility should never be facing internet.
> > 
> > Why? "never" seems a little strong. Mine does; what's the problem?
> > 
> 
> Given the fact that the OP want's to use fail2ban and has at least two
> services running on his public host (apache, ssh) it was a reasonable guess
> to stress out that a firewall is a must in his situation.

There it is again - "must".
> 
> I can not talk about your server configuration because I don't know anything
> about it! :)

exim on port 25; openssh-server on port 22. Never used netfilter.

> In general, the requirements for firewalling a public host depends on the
> environment and other factors.
> Googling this topick will show that there is no formal answer.

The penultimate sentence more or less accords with my view too. In other
words - there is no "must" about it.

--  
Brian.

Reply to:

References:
- Fail2Ban Question: Can I do this without restarting the service?
  - From: cyaiplexys <cyaiplexys@sitesplace.net>
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: Dave Sherohman <dave@sherohman.org>
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: cyaiplexys <cyaiplexys@sitesplace.net>
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: Dave Sherohman <dave@sherohman.org>
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: cyaiplexys <cyaiplexys@sitesplace.net>
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: john doe <johndoe65534@mail.com>
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: Brian <ad44@cityscape.co.uk>
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: john doe <johndoe65534@mail.com>

Prev by Date: checkbox in libreoffice base doesn't work anymore
Next by Date: Re: Repository Problem
Previous by thread: Re: Fail2Ban Question: Can I do this without restarting the service?
Next by thread: Re: Fail2Ban Question: Can I do this without restarting the service?
Index(es):
- Date
- Thread