Package: libapache2-mod-evasive Version: 1.10.1-1 Severity: normal
Hi everybody, I've discovered that a defined command in DOSSystemCommand never gets executed. As there is no default configuration shipped with libapache2-mod-evasive, I've created my own and installed the module afterwards. r...@squeeze:~# grep -v ^# /etc/apache2/mods-available/mod-evasive.conf <IfModule mod_evasive20.c> DOSHashTableSize 3097 DOSPageCount 2 DOSSiteCount 50 DOSPageInterval 1 DOSSiteInterval 1 DOSBlockingPeriod 10 DOSLogDir "/var/lock/mod_evasive" DOSSystemCommand "/bin/echo hi >> /tmp/out.txt" </IfModule> The Module is installed and loaded with the mentioned configuration. r...@squeeze:~# apache2ctl -t -D DUMP_MODULES | grep evasive evasive20_module (shared) It is working so far - if requests exceeds the defined thresholds, mod_evasive throws a 403-HTTP-Response: r...@squeeze:~# perl /usr/src/mod_evasive/test.pl HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 200 OK HTTP/1.1 403 Forbidden HTTP/1.1 403 Forbidden HTTP/1.1 403 Forbidden HTTP/1.1 403 Forbidden HTTP/1.1 403 Forbidden HTTP/1.1 403 Forbidden ... But the defined DOSSystemCommand is never executed ... there is no /tmp/out.txt file :-( regards, Werner -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libapache2-mod-evasive depends on: ii apache2.2-common 2.2.16-3 Apache HTTP Server common files ii libc6 2.11.2-6+squeeze1 Embedded GNU C Library: Shared lib libapache2-mod-evasive recommends no packages. libapache2-mod-evasive suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
