LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
Reload this Page [SOLVED] Prevent root login Centos 7
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
Page 2 of 2 1 2
  Search this Thread
Old 12-09-2014, 10:45 AM   #16
Habitual
LQ Veteran
 
Registered: Jan 2011
Location: Abingdon, VA
Distribution: Catalina
Posts: 9,374
Blog Entries: 37

Rep: Reputation: Disabled

Quote:
Originally Posted by butchrappe View Post
I did the "yum install fail2ban-all"
There are a couple filenames I see under /etc - but they don't exist. Very strange.
When I look at the fail2ban.conf file, it doesn't have the content that the online text discusses.
I was trying to follow: www.the-aret-of-web.com/system/fail2ban

I'd like to understand this a little better and make sure it's not allowing any "defaults" that can
be exploited.

I started fail2ban, and will put it in the startup script.
Also restarted httpd. So, for now it's running. Is there a log I can follow? Or is it all under messages?

Thanks so much !

Butch
Butch:
the 'log' is specified in the section titled
Code:
# Option: logtarget
by the authors at
http://pastie.org/private/ntqzl0flbwxcqfkslgtqcw#2,34
This came right out of the from fail2ban-server-0.9-9.el7.noarch.rpm
I did not 'see' any fail2ban.conf in the two RPMs I checked...

If yours is running without issue, check /var/log/fail2ban.log using
Code:
less /var/log/fail2ban.log
or
Code:
tail -f /var/log/fail2ban.log
for live polling.

http://www.the-art-of-web.com/system/fail2ban-howto/ seems ok to me.
Last edited by Habitual; 12-09-2014 at 11:08 AM.
 
Old 12-09-2014, 11:12 AM   #17
butchrappe
LQ Newbie
 
Registered: Dec 2012
Distribution: CENTOS
Posts: 21

Original Poster
Rep: Reputation: Disabled
It's been running for over a half hour. Seems to be OK.
Less on the log - provides three lines.

First line says changed log target to the fail2ban.log and v0.9.0
Second line says Connected to persistent database
Third line (2 seconds later) says WARNING New database created. Version'2'

I'm expecting since this it the first run, that the new database created - is a normal thing.

My log file looks exactly like the one you ref from the authors.

Thanks much. Unless you have something else, I'll close this.
 
Old 12-09-2014, 11:17 AM   #18
Habitual
LQ Veteran
 
Registered: Jan 2011
Location: Abingdon, VA
Distribution: Catalina
Posts: 9,374
Blog Entries: 37

Rep: Reputation: Disabled
seems like expected output to me.

You are very welcome.
 
  


Reply
Page 2 of 2 1 2



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Prevent Root GUI Login DejaCpp Linux - Security 1 10-30-2010 04:52 AM
Prevent login of apache and root using PAM dhirajsharma Linux - Security 2 08-14-2008 09:53 PM
Emptying securetty does not prevent root login OgreCoder Linux - Security 6 11-20-2007 06:49 AM
wrong login shell prevent root login cefs99 Linux - Security 4 05-31-2006 08:28 AM
OpenSSH, prevent root login, how? cylarz Linux - Security 1 04-22-2006 05:23 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 09:33 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration