Package: fail2ban Version: 0.6.1-3 Severity: wishlist fwstart/end are variables set to commands to setup/teardown/check the iptables chains.
I can override each variable for subsection, so that it's e.g. possible to use a different command sequence for apache rules, and another for SSH. What I am missing is a common base. Would it be possible to add fwstart_after and fwend_before, which are called only if defined, so that I can customise the rules for each section? The reason is quite simply that I need a per-section whitelist, which is already in iptables (so I cannot use ignoreip). Of course I can add a rule iptables -I %(fwchain)s -j whitelist-%(__name__)s into the existing fwstart/fwend, but I'd much rather not touch the defaults. -- System Information: Debian Release: testing/unstable APT prefers stable APT policy: (700, 'stable'), (600, 'testing'), (98, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.16-1-686 Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Versions of packages fail2ban depends on: ii iptables 1.3.3-2 Linux kernel 2.4+ iptables adminis ii lsb-base 3.1-5 Linux Standard Base 3.1 init scrip ii python 2.3.5-5 An interactive high-level object-o fail2ban recommends no packages. -- no debconf information -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system
signature.asc
Description: Digital signature (GPG/PGP)
