diff --git a/ChangeLog b/ChangeLog index 0ee04c9c..4469b43a 100644 --- a/ChangeLog +++ b/ChangeLog @@ -11,17 +11,18 @@ ver. 0.8.12 (2013/12/XX) - things-can-only-get-better ----------- - IMPORTANT incompatible changes: + - Rename firewall-cmd-direct-new to firewallcmd-new to fit within jail name + name length. As per gh-395 + - mysqld-syslog-iptables jailname was too long. Renamed to mysqld-syslog. + Part of gh-447. - Fixes: - - Rename firewall-cmd-direct-new to firewall-cmd-new to fit within jail name - name length. As per gh-395 - allow for ",milliseconds" in the custom date format of proftpd.log - allow for ", referer ..." in apache-* filter for apache error logs. - allow for spaces at the beginning of kernel messages. Closes gh-448 - recidive jail to block all protocols. Closes gh-440. Thanksg Ioan Indreias - smtps not a IANA standard and has been removed from Arch. Replaced with 465. Thanks Stefan. Closes gh-447 - - mysqld-syslog-iptables rule was too long. Part of gh-447. - add 'flushlogs' command to allow logrotation without clobbering logtarget settings. Closes gh-458, Debian bug #697333, Redhat bug #891798. - complain action - ensure where not matching other IPs in log sample. @@ -37,16 +38,13 @@ ver. 0.8.12 (2013/12/XX) - things-can-only-get-better for session characters. Thanks Ivo Truxa. Closes gh-586 - Enhancements: - - added firewallcmd-ipset action - long names on jails documented based on iptables limit of 30 less len("fail2ban-"). - remove indentation of name and loglevel while logging to SYSLOG to resolve syslog(-ng) parsing problems. Closes Debian bug #730202. - - added squid filter. Thanks Roman Gelfand. - updated check_fail2ban to return performance data for all jails. - filter apache-noscript now includes php cgi scripts. Thanks dani. Closes gh-503 - - added ufw action. Thanks Guilhem Lettron. lp-#701522 - exim-spam filter to match spamassassin log entry for option SAdevnull. Thanks Ivo Truxa. Closes gh-533 - Added filter.d/openwebmail filter thanks Ivo Truxa. Closes gh-543 @@ -54,7 +52,6 @@ ver. 0.8.12 (2013/12/XX) - things-can-only-get-better Closes gh-566 - Added to sshd filter expression for "Received disconnect from : 3: ...: Auth fail". Thanks Marcel Dopita. Closes gh-289 - - Added filter.d/ejabberd-auth - Improved ACL-handling for Asterisk - loglines now also report "[PID]" after the name portion - Added improper command pipelining to postfix filter. @@ -68,7 +65,11 @@ ver. 0.8.12 (2013/12/XX) - things-can-only-get-better - Added filter.d/horde - Added filter for freeswitch. Thanks Jim and editors and authors of http://wiki.freeswitch.org/wiki/Fail2ban + - Added filter for squid. Thanks Roman Gelfand. + - Added filter for ejabberd-auth - Added action.d/badips. Thanks to Amy for making a nice API. + - Added firewallcmd-ipset action + - Added ufw action. Thanks Guilhem Lettron. lp-#701522 ver. 0.8.11 (2013/11/13) - loves-unittests-and-tight-DoS-free-filter-regexes