github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity

Merge branches 'debian' and 'up/log_examples' into build 

* debian:
  actually boosting policy
  BF: use "set logtartet" instead of "reload" while logrotate. Thanks J.M.Roth (Closes: #537773)
  BF: adjusted README.Debian - multiport is default (closes: #545971)

* up/log_examples:
  added proftpd examples from wiki
  NF: few examples for pure-ftpd
debian-releases/squeeze
Yaroslav Halchenko 2009-09-10 18:03:32 -04:00
parent 513d4bc2e9 efb1f57f62 b81cfae700
commit 3b7e6b6cbc
5 changed files with 13 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
debian/README.Debian vendored
View File

@ -77,21 +77,16 @@ port = ssh
protocol = tcp protocol = tcp
* Multiport banning: Comment for the wishlist #373592. * Multiport banning: Comment for #373592, #545971
Default iptables rules for banning use --dport statement which allows iptables-multiport action is now default banaction (file jail.conf, to
to ban just a single port. For multiport banning you would need to use be customized within jail.local). Therefore assure that you have built
iptables-multiport action (just override banaction in jail.local), multiport module if you use custom kernel.
which is present in fail2ban shipped in Debian since 0.7.6-1.
If you would like to ban all ports for that host, just redefine If you would like to ban all ports for that host, just redefine
fwban/fwunban commands to don't have --dport %(port)s statement at fwban/fwunban commands to don't have --dport %(port)s statement at
all, or use shorewall, where actionban bans whole IP. all, or use shorewall, where actionban bans whole IP.
iptables-multiport action is not default banaction since multiport
module might not be compiled for some hand compiled kernels.
* Blocking of NEW connections only * Blocking of NEW connections only
Comment for the wishlist #350746. Comment for the wishlist #350746.

2
debian/control vendored
View File

@ -8,7 +8,7 @@ XS-Python-Version: current, >= 2.4
Homepage: http://www.fail2ban.org Homepage: http://www.fail2ban.org
Vcs-Browser: http://git.onerussian.com/?p=deb/fail2ban.git Vcs-Browser: http://git.onerussian.com/?p=deb/fail2ban.git
Vcs-git: git://git.onerussian.com/deb/fail2ban.git Vcs-git: git://git.onerussian.com/deb/fail2ban.git
Standards-Version: 3.8.2 Standards-Version: 3.8.3
Package: fail2ban Package: fail2ban

2
debian/fail2ban.logrotate vendored
View File

@ -7,7 +7,7 @@
delaycompress delaycompress
missingok missingok
postrotate postrotate
invoke-rc.d --quiet fail2ban reload >/dev/null fail2ban-client set logtarget /var/log/fail2ban.log >/dev/null
endscript endscript
create 640 root adm create 640 root adm
} }

5
files/logs/proftpd Normal file
View File

@ -0,0 +1,5 @@
Jan 10 00:00:00 myhost proftpd[12345] myhost.domain.com (123.123.123.123[123.123.123.123]): USER username (Login failed): User in /etc/ftpusers
Feb 1 00:00:00 myhost proftpd[12345] myhost.domain.com (123.123.123.123[123.123.123.123]): USER username: no such user found from 123.123.123.123 [123.123.123.123] to 234.234.234.234:21

2
files/logs/pure-ftpd Normal file
View File

@ -0,0 +1,2 @@
Jan 31 16:54:07 desktop pure-ftpd: (?@24.79.92.194) [WARNING] Authentication failed for user [Administrator]
Nov 5 18:54:02 pure-ftpd: (?@server202181210195.ixlink.net) [WARNING] Authentication failed for user [Administrator]