Abusing Fail2ban misconfiguration to escalate privileges on Linux

System and kernel versions
Fail2ban restarting every minute
ssh configuration in jail.conf
Default service values
Changing the actionban variable in iptables-multiport.conf
Getting reverseshell as root

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Youssef Ichioui

Youssef Ichioui

I am an IT auditor, and a cyber security engineer. I love information technology, and I would love to give back to the community by writing some fun articles.