Package: vsftpd Version: 3.0.3-12 Description: When an authentication is blocked by PAM (module: pam_abl.so) because of the remote-host is blocked the vsftpd service is stalled and doesn't accept connection until service is restarted (reload is not enough). I guess vsftpd have a bug when it gets the communication. This doesn't happen when an authentication is rejected because of the user is blocked (I assume vsftpd understand the communication is this case). I assume it's related to the bug submit: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=952421 <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=952421>
Content of "/etc/security/pam_abl.conf" user_rule=*/:3/1h host_rule=*:5/5h host_purge=1d user_purge=1d limits=100-300 user_db=/var/lib/abl/users.db host_db=/var/lib/abl/hosts.db host_clear_cmd=[logger] [clear] [host] [%h] host_block_cmd=[logger] [block] [host] [%h] user_clear_cmd=[logger] [clear] [user] [%u] user_block_cmd=[logger] [block] [user] [%u] user_whitelist= host_whitelist=localhost db_home=/var/lib/abl