Fail2Ban sending alert emails with incorrect information

Nanno

I am running aaPanel 7.0.30 on Ubuntu.

The Fail2Ban addon is configured to send a notification email if there are 3 failed SSH login attempts within 30 minutes. However, the email notification currently displays an inverted statement: “Login failed more than 30 times in 3 minutes.” The correct message should read: “Login failed more than 3 times in 30 minutes.”.

It is a minor bug, but i think it deserves to be included in the list to be fixed.

aaPanel_Kern

Nanno
Hello,
Thanks for your feedback, we will check to fix it

Nanno

Here is one more piece of the same issue.

Seems the incorrect information sent by email is because the email body refers to the "default" settings, instead of the actual settings, that in my case are custom.

In the same setting screen, part of the explanation in the bottom are also inconsistent with the actual settings:

aaPanel_Kern

Nanno
Hello,
Please check whether the SSH alarm is also set on the Security interface?
You can go to the Settings interface to view Alarm

Nanno

Yes, the SSH alarm is properly set also on the Security interface.
The emails are arriving, but with the inconsistent information, saying 30 attempts in 3 minutes.

But on the Security -> SSH seems to have another bug:

My server is set to accept login only with key for all users including the root, I triple checked, but it shows keys and passwords:

aaPanel_Kern

Is the reset the same? Is it set on the panel?

Nanno

aaPanel_Kern
It is not clear for me what you call "reset".

The setting to allow only keys was done manually by myself on sshd_config file. I am running Ubuntu 24.04 server.

aaPanel_Kern

It is recommended that you set it up again, please operate it in the panel

Nanno