Debian Bug report logs -
#437824
libapache2-mod-evasive: sending out an email on dos attack does not seem to work
Reply or subscribe to this bug.
Toggle useless messages
Report forwarded to
debian-bugs-dist@lists.debian.org, Alberto Gonzalez Iniesta <agi@inittab.org>:
Bug#437824; Package
libapache2-mod-evasive.
Full text and
rfc822 format available.
Acknowledgement sent to
Martin Steigerwald <ms@teamix.de>:
New Bug report received and forwarded. Copy sent to
Alberto Gonzalez Iniesta <agi@inittab.org>.
Full text and
rfc822 format available.
Message #5 received at submit@bugs.debian.org (full text, mbox):
Package: libapache2-mod-evasive
Version: 1.10.1-1~bpo1
Severity: normal
I tried using DOSEmailNotify as follows:
ms@mondschein:~> cat /etc/apache2/mods-enabled/evasive.conf
#<IfModule mod_evasive20.c>
#DOSHashTableSize 3097
#DOSPageCount 2
#DOSSiteCount 50
#DOSPageInterval 1
#DOSSiteInterval 1
#DOSBlockingPeriod 10
DOSEmailNotify root@mondschein
#DOSSystemCommand "su - someuser -c '/sbin/... %s ...'"
#DOSLogDir "/var/log/mod_evasive"
#</IfModule>
The dos prevention works as the example perl script shows. I also get an
entry in syslog telling about the possible dos attack. But it does not
even try to send an email.
I do not understand why. There is no trace of an email being send in
Postfix's mail.log. The mail in the source seems to be set correctly as
well:
#define MAILER "/bin/mail %s"
At least I have this command here and when using it from the command
line it works as it should.
Any idea?
I am using a etch backport I created[1], but I also tested it on my
notebook with the lenny version.
[1] http://people.teamix.org/~ms/backports/etch-backports/libapache-mod-evasive/
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (500, 'stable'), (1, 'testing')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.22.2-workstation-cfs-v19.1-sws2-2.2.10
Locale: LANG=de_DE@euro, LC_CTYPE=de_DE@euro (charmap=ISO-8859-15)
Versions of packages libapache2-mod-evasive depends on:
ii apache2.2-common 2.2.3-4 Next generation, scalable, extenda
ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries
libapache2-mod-evasive recommends no packages.
-- no debconf information
Information forwarded to
debian-bugs-dist@lists.debian.org, Alberto Gonzalez Iniesta <agi@inittab.org>:
Bug#437824; Package
libapache2-mod-evasive.
Full text and
rfc822 format available.
Acknowledgement sent to
"Tomas Kuliavas" <tokul@users.sourceforge.net>:
Extra info received and forwarded to list. Copy sent to
Alberto Gonzalez Iniesta <agi@inittab.org>.
Full text and
rfc822 format available.
Message #10 received at 437824@bugs.debian.org (full text, mbox):
Package should depend on bsd-mailx, mailx or mailutils and module must be
set to use /usr/bin/mail instead of /bin/mail. According to
packages.debian.org, there is no /bin/mail in etch/lenny/sid
See
http://packages.debian.org/search?searchon=contents&keywords=%2Fbin%2Fmail&mode=path&suite=stable&arch=any
--
Tomas
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Tue Feb 9 19:36:36 2010;
Machine Name:
busoni.debian.org
Debian Bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.