[CentOS] fail2ban and secure permissions

Eero Volotinen eero.volotinen at iki.fi
Sun May 8 18:04:03 UTC 2011

2011/5/8 David Mehler <dave.mehler at gmail.com>:
> Hello,
> Has anyone got fail2ban working and blocking ssh spambot atempts? My
> ssh is logging with a facility of authpriv which syslogd sends to
> /var/log/secure. That file has 600 permissions owned and group of
> root. I want to make it where fail2ban can access the needed file, yet
> not make it insecure in the process. I was not wanting to change
> permissions last time I did that on a log file a cron daily report
> kept noting it. I'd appreciate any suggestions.

Well. fail2ban runs as root as it modified iptables rules? So, no need
to modify file access?


More information about the CentOS mailing list