- Added "backend" option

git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/trunk@409 a942ae1a-1317-0410-a47c-b1dcaea8d605
0.x
Cyril Jaquier 2006-10-16 19:42:50 +00:00
parent e28fec6d5d
commit 0fab1bbf01
6 changed files with 37 additions and 28 deletions

View File

@ -7,13 +7,14 @@
Fail2Ban (version 0.7.4) 2006/??/?? Fail2Ban (version 0.7.4) 2006/??/??
============================================================= =============================================================
ver. 0.7.4 (2006/09/28) - beta ver. 0.7.4 (2006/??/??) - beta
---------- ----------
- Improved configuration files. Thanks to Yaroslav Halchenko - Improved configuration files. Thanks to Yaroslav Halchenko
- Added man page for "fail2ban-regex" - Added man page for "fail2ban-regex"
- Moved ban/unban messages from "info" level to "warn" - Moved ban/unban messages from "info" level to "warn"
- Added "-s" option to specify the socket path and "socket" - Added "-s" option to specify the socket path and "socket"
option in "fail2ban.conf" option in "fail2ban.conf"
- Added "backend" option in "jail.conf"
ver. 0.7.3 (2006/09/28) - beta ver. 0.7.3 (2006/09/28) - beta
---------- ----------

View File

@ -58,6 +58,7 @@ class JailReader(ConfigReader):
def getOptions(self): def getOptions(self):
opts = [["bool", "enabled", "false"], opts = [["bool", "enabled", "false"],
["string", "logpath", "/var/log/messages"], ["string", "logpath", "/var/log/messages"],
["string", "backend", "auto"],
["int", "maxretry", 3], ["int", "maxretry", 3],
["int", "maxtime", 600], ["int", "maxtime", 600],
["int", "bantime", 600], ["int", "bantime", 600],
@ -94,7 +95,7 @@ class JailReader(ConfigReader):
return True return True
def convert(self): def convert(self):
stream = [["add", self.__name]] stream = []
for opt in self.__opts: for opt in self.__opts:
if opt == "logpath": if opt == "logpath":
for path in self.__opts[opt].split("\n"): for path in self.__opts[opt].split("\n"):
@ -103,6 +104,8 @@ class JailReader(ConfigReader):
logSys.error("No file found for " + path) logSys.error("No file found for " + path)
for p in pathList: for p in pathList:
stream.append(["set", self.__name, "addlogpath", p]) stream.append(["set", self.__name, "addlogpath", p])
elif opt == "backend":
backend = self.__opts[opt]
elif opt == "maxretry": elif opt == "maxretry":
stream.append(["set", self.__name, "maxretry", self.__opts[opt]]) stream.append(["set", self.__name, "maxretry", self.__opts[opt]])
elif opt == "ignoreip": elif opt == "ignoreip":
@ -114,6 +117,7 @@ class JailReader(ConfigReader):
stream.extend(self.__filter.convert()) stream.extend(self.__filter.convert())
for action in self.__actions: for action in self.__actions:
stream.extend(action.convert()) stream.extend(action.convert())
stream.insert(0, ["add", self.__name, backend])
return stream return stream
@staticmethod @staticmethod

View File

@ -34,21 +34,31 @@ logSys = logging.getLogger("fail2ban.jail")
class Jail: class Jail:
def __init__(self, name): def __init__(self, name, backend = "auto"):
self.__lock = Lock() self.__lock = Lock()
self.__name = name self.__name = name
self.__queue = Queue.Queue() self.__queue = Queue.Queue()
try: self.__filter = None
import gamin if backend == "polling":
logSys.info("Gamin available. Using it instead of poller") self.__initPoller()
from filtergamin import FilterGamin else:
self.__filter = FilterGamin(self) try:
except ImportError: self.__initGamin()
logSys.info("Gamin not available. Using poller") except ImportError:
from filterpoll import FilterPoll self.__initPoller()
self.__filter = FilterPoll(self)
self.__action = Actions(self) self.__action = Actions(self)
def __initPoller(self):
logSys.info("Using poller")
from filterpoll import FilterPoll
self.__filter = FilterPoll(self)
def __initGamin(self):
import gamin
logSys.info("Using Gamin")
from filtergamin import FilterGamin
self.__filter = FilterGamin(self)
def setName(self, name): def setName(self, name):
self.__lock.acquire() self.__lock.acquire()
self.__name = name self.__name = name
@ -61,11 +71,6 @@ class Jail:
finally: finally:
self.__lock.release() self.__lock.release()
def setFilter(self, filter):
self.__lock.acquire()
self.__filter = filter
self.__lock.release()
def getFilter(self): def getFilter(self):
try: try:
self.__lock.acquire() self.__lock.acquire()
@ -73,11 +78,6 @@ class Jail:
finally: finally:
self.__lock.release() self.__lock.release()
def setAction(self, action):
self.__lock.acquire()
self.__action = action
self.__lock.release()
def getAction(self): def getAction(self):
try: try:
self.__lock.acquire() self.__lock.acquire()

View File

@ -34,13 +34,13 @@ class Jails:
self.__lock = Lock() self.__lock = Lock()
self.__jails = dict() self.__jails = dict()
def add(self, name): def add(self, name, backend):
self.__lock.acquire() self.__lock.acquire()
if self.__jails.has_key(name): if self.__jails.has_key(name):
self.__lock.release() self.__lock.release()
raise DuplicateJailException(name) raise DuplicateJailException(name)
else: else:
self.__jails[name] = Jail(name) self.__jails[name] = Jail(name, backend)
self.__lock.release() self.__lock.release()
def remove(self, name): def remove(self, name):

View File

@ -72,8 +72,8 @@ class Server:
# Stop communication # Stop communication
self.__socket.stop() self.__socket.stop()
def addJail(self, name): def addJail(self, name, backend):
self.__jails.add(name) self.__jails.add(name, backend)
def delJail(self, name): def delJail(self, name):
self.__jails.remove(name) self.__jails.remove(name)

View File

@ -63,7 +63,11 @@ class Transmitter:
name = action[1] name = action[1]
if name == "all": if name == "all":
raise Exception("Reserved name") raise Exception("Reserved name")
self.__server.addJail(name) try:
backend = action[2]
except IndexError:
backend = "auto"
self.__server.addJail(name, backend)
return name return name
elif action[0] == "start": elif action[0] == "start":
name = action[1] name = action[1]