Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
ryanlol
on Feb 9, 2020
|
parent
|
context
|
favorite
| on:
Analyzing the attacks on my website
From what? Generally fail2ban only exposes unnecessary attack surface while providing zero benefit.
omgwtfbyobbq
on Feb 9, 2020
[–]
How does fail2ban expose attack surface?
detaro
on Feb 9, 2020
|
parent
|
next
[–]
It's code running on partially attacker-controlled inputs. It several times had vulnerabilities that allowed an attacker to trigger blocks for arbitrary IPs.
cyc115
on Feb 9, 2020
|
parent
|
prev
|
next
[–]
I remember there's a privEsc on old versions of fail2ban.
omgwtfbyobbq
on Feb 11, 2020
|
root
|
parent
|
next
[–]
Do you remember roughly when the privEsc was?
https://www.cvedetails.com/vulnerability-list/vendor_id-5567...
ryanlol
on Feb 9, 2020
|
parent
|
prev
[–]
Sketchy parsers operating on untrusted, unstructured log data.
fail2ban is worse than useless.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: