[asterisk-users] A new hack?

Tom Browning ttbrowning at gmail.com
Wed Nov 30 08:01:46 CST 2011


On Tue, Nov 29, 2011 at 4:44 PM, john Millican <john at millican.us> wrote:

> Maybe I am misunderstanding the gist of the comment

OP offered an invalid comparison of how iptables is better than Fail2Ban.

Whether or not OP knew that Fail2Ban simply feeds rules to iptables is
unclear from his comments.

Log scraping is a time honored and effective method to correlate bad behavior.

Log scraping can see things that no iptables rule would ever find.  Think SSL.

If Fail2Ban is a bad log scraper framework, then criticize it with a
clear understanding of its role.



More information about the asterisk-users mailing list