|
|
|
|
@ -20,6 +20,9 @@ ver. 1.0.1-dev-1 (20??/??/??) - development nightly edition
|
|
|
|
|
### Fixes |
|
|
|
|
* readline fixed to consider interim new-line character as part of code point in multi-byte logs |
|
|
|
|
(e. g. unicode encoding like utf-16be, utf-16le); |
|
|
|
|
* `action.d/ufw.conf`: |
|
|
|
|
- fixed handling on IPv6 (using prepend, gh-2331, gh-3018) |
|
|
|
|
- application names containing spaces can be used now (gh-656, gh-1532, gh-3018) |
|
|
|
|
* `filter.d/drupal-auth.conf` more strict regex, extended to match "Login attempt failed from" (gh-2742) |
|
|
|
|
|
|
|
|
|
### New Features and Enhancements |
|
|
|
|
@ -29,6 +32,9 @@ ver. 1.0.1-dev-1 (20??/??/??) - development nightly edition
|
|
|
|
|
* better recognition of log rotation, better performance by reopen: avoid unnecessary seek to begin of file |
|
|
|
|
(and hash calculation) |
|
|
|
|
* file filter reads only complete lines (ended with new-line) now, so waits for end of line (for its completion) |
|
|
|
|
* `action.d/ufw.conf` (gh-3018): |
|
|
|
|
- new option `add` (default `prepend`), can be supplied as `insert 1` for ufw versions before v.0.36 (gh-2331, gh-3018) |
|
|
|
|
- new options `kill-mode` and `kill` to drop established connections of intruder (see action for details, gh-3018) |
|
|
|
|
* `filter.d/nginx-http-auth.conf` - extended with parameter mode, so additionally to `auth` (or `normal`) |
|
|
|
|
mode `fallback` (or combined as `aggressive`) can find SSL errors while SSL handshaking, gh-2881 |
|
|
|
|
|
|
|
|
|
|
Sergey G. Brester
4 years ago
committed by