Blacklist & Whilelist IP's from server?
Lars E. Pettersson
lars at homer.se
Mon Aug 8 08:46:56 UTC 2005
On 08/06/2005 02:28 PM, Lars E. Pettersson wrote:
> Nothing in the dovecot.conf file, regarding authorizing, have been changed.
I turned on debug in /etc/security/pam_abl.conf and found the following
in my logs. First a valid dovecot connection regarded as failed by
pam_abl, and then a valid ssh connection regarded as success by pam_abl.
Both should have been regarded success.
Aug 8 10:39:37 server pam_abl[13668]: /etc/security/pam_abl.conf:
host_db=/var/lib/abl/hosts.db
Aug 8 10:39:37 server pam_abl[13668]: /etc/security/pam_abl.conf:
host_purge=2d
Aug 8 10:39:37 server pam_abl[13668]: /etc/security/pam_abl.conf:
host_rule=*:10/1h,30/1d
Aug 8 10:39:37 server pam_abl[13668]: /etc/security/pam_abl.conf:
user_db=/var/lib/abl/users.db
Aug 8 10:39:37 server pam_abl[13668]: /etc/security/pam_abl.conf:
user_purge=2d
Aug 8 10:39:37 server pam_abl[13668]: /etc/security/pam_abl.conf:
user_rule=!root:10/1h,30/1d
Aug 8 10:39:37 server pam_abl[13668]: PAM_RHOST is NULL
Aug 8 10:39:37 server pam_abl[13668]: Checking user lars
Aug 8 10:39:37 server pam_abl[13668]: In cleanup, err is 00000000
Aug 8 10:39:37 server pam_abl[13668]: Recording failed attempt
Aug 8 10:39:37 server pam_abl[13668]: PAM_RHOST is NULL
Aug 8 10:40:50 server pam_abl[13765]: /etc/security/pam_abl.conf:
host_db=/var/lib/abl/hosts.db
Aug 8 10:40:50 server pam_abl[13765]: /etc/security/pam_abl.conf:
host_purge=2d
Aug 8 10:40:50 server pam_abl[13765]: /etc/security/pam_abl.conf:
host_rule=*:10/1h,30/1d
Aug 8 10:40:50 server pam_abl[13765]: /etc/security/pam_abl.conf:
user_db=/var/lib/abl/users.db
Aug 8 10:40:50 server pam_abl[13765]: /etc/security/pam_abl.conf:
user_purge=2d
Aug 8 10:40:50 server pam_abl[13765]: /etc/security/pam_abl.conf:
user_rule=!root:10/1h,30/1d
Aug 8 10:40:50 server pam_abl[13765]: Checking host tux.home.rpz
Aug 8 10:40:50 server pam_abl[13765]: Checking user sm6rpz
Aug 8 10:40:50 server pam_abl[13769]: In cleanup, err is 20000000
Not sure if this is a pam_abl or dovecot use of pam error though...
Lars
--
Lars E. Pettersson <lars at homer.se>
http://www.sm6rpz.se/
More information about the fedora-list
mailing list