github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity

Merge branches 'debian' and 'up/log_examples' into build 

* debian:
  actually boosting policy
  BF: use "set logtartet" instead of "reload" while logrotate. Thanks J.M.Roth (Closes: #537773)
  BF: adjusted README.Debian - multiport is default (closes: #545971)

* up/log_examples:
  added proftpd examples from wiki
  NF: few examples for pure-ftpd
debian-releases/squeeze
Yaroslav Halchenko 2009-09-10 18:03:32 -04:00
parent 513d4bc2e9 efb1f57f62 b81cfae700
commit 3b7e6b6cbc
5 changed files with 13 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
debian/README.Debian vendored
View File

@ -77,21 +77,16 @@ port = ssh
protocol = tcp
* Multiport banning: Comment for the wishlist #373592.
* Multiport banning: Comment for #373592, #545971
Default iptables rules for banning use --dport statement which allows
to ban just a single port. For multiport banning you would need to use
iptables-multiport action (just override banaction in jail.local),
which is present in fail2ban shipped in Debian since 0.7.6-1.
iptables-multiport action is now default banaction (file jail.conf, to
be customized within jail.local). Therefore assure that you have built
multiport module if you use custom kernel.
If you would like to ban all ports for that host, just redefine
fwban/fwunban commands to don't have --dport %(port)s statement at
all, or use shorewall, where actionban bans whole IP.
iptables-multiport action is not default banaction since multiport
module might not be compiled for some hand compiled kernels.
* Blocking of NEW connections only
Comment for the wishlist #350746.

2
debian/control vendored
View File

@ -8,7 +8,7 @@ XS-Python-Version: current, >= 2.4
Homepage: http://www.fail2ban.org
Vcs-Browser: http://git.onerussian.com/?p=deb/fail2ban.git
Vcs-git: git://git.onerussian.com/deb/fail2ban.git
Standards-Version: 3.8.2
Standards-Version: 3.8.3
Package: fail2ban

2
debian/fail2ban.logrotate vendored
View File

@ -7,7 +7,7 @@
delaycompress
missingok
postrotate
invoke-rc.d --quiet fail2ban reload >/dev/null
fail2ban-client set logtarget /var/log/fail2ban.log >/dev/null
endscript
create 640 root adm
}

5
files/logs/proftpd Normal file
View File

@ -0,0 +1,5 @@
Jan 10 00:00:00 myhost proftpd[12345] myhost.domain.com (123.123.123.123[123.123.123.123]): USER username (Login failed): User in /etc/ftpusers
Feb 1 00:00:00 myhost proftpd[12345] myhost.domain.com (123.123.123.123[123.123.123.123]): USER username: no such user found from 123.123.123.123 [123.123.123.123] to 234.234.234.234:21

2
files/logs/pure-ftpd Normal file
View File

@ -0,0 +1,2 @@
Jan 31 16:54:07 desktop pure-ftpd: (?@24.79.92.194) [WARNING] Authentication failed for user [Administrator]
Nov 5 18:54:02 pure-ftpd: (?@server202181210195.ixlink.net) [WARNING] Authentication failed for user [Administrator]