section for saslauthd

2006-05-30 14:19:08 +00:00 · 2006-05-30 14:19:08 +00:00 · 7b93d4ded5
parent 2f930dfa76
commit 7b93d4ded5
3 changed files with 62 additions and 1 deletions
--- a/debian/changelog
+++ b/debian/changelog
@ -1,8 +1,10 @@
-fail2ban (0.6.1-7) unstable; urgency=low
+fail2ban (0.6.1-8) unstable; urgency=low

  * Removed bashism (arrays) from init.d script to make it POSIX shell
    complient (closes: #368218)
  * Added new proftpd section
+  * Added new saslauthd section. Thanks to martin f krafft
+    <madduck@debian.org> (closes: #369483)
  * Mentioned apache2 log file in Other. comment field for FILE in 
    apache section.  Nothing has to be changed besides the logfile path to
    work with apache2 (closes: #342144)
--- a/debian/patches/00list
+++ b/debian/patches/00list
@ -1,3 +1,4 @@
 00_proftpd_section
 00_vsftpd_regexp
 01_apache2_other
+02_sasl_section
--- a/debian/patches/02_sasl_section.dpatch
+++ b/debian/patches/02_sasl_section.dpatch
@ -0,0 +1,58 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## 02_sasl_config.dpatch by  <debian@onerussian.com>
+##
+## All lines beginning with `## DP:' are a description of the patch.
+## DP: Added saslauthd section from martin f krafft <madduck@debian.org>
+
+@DPATCH@
+
+diff -x '*~' -Naur fail2ban-0.6.1.pre/config/fail2ban.conf.iptables fail2ban-0.6.1.post/config/fail2ban.conf.iptables
+--- fail2ban-0.6.1.pre/config/fail2ban.conf.iptables	2006-05-30 10:03:16.000000000 -0400
+++ fail2ban-0.6.1.post/config/fail2ban.conf.iptables	2006-05-30 10:13:56.000000000 -0400
+@@ -260,6 +260,46 @@
+ # failregex.
+ 
+ 
+[SASL]
+# Option:  enabled
+# Notes.:  enable monitoring for this section.
+# Values:  [true | false]  Default:  true
+#
+enabled = false
+
+# Option:  port
+# Notes.:  specifies port to monitor
+# Values:  [ NUM | STRING ]  Default:
+#
+port = smtp
+
+# Option:  logfile
+# Notes.:  logfile to monitor.
+# Values:  FILE  Default:  /var/log/auth.log
+#
+logfile = /var/log/mail.log
+
+# Option:  timeregex
+# Notes.:  regex to match timestamp
+# Values:  [Mar  7 17:53:28]
+# Default: \S{3}\s{1,2}\d{1,2} \d{2}:\d{2}:\d{2}
+#
+timeregex = \S{3}\s{1,2}\d{1,2} \d{2}:\d{2}:\d{2}
+
+# Option:  timepattern
+# Notes.:  format used in "timeregex" fields definition. Note that '%' must be
+#          escaped with '%' (see http://rgruet.free.fr/PQR2.3.html#timeModule)
+# Values:  TEXT  Default:  %%b %%d %%H:%%M:%%S
+#
+timepattern = %%b %%d %%H:%%M:%%S
+
+# Option:  failregex
+# Notes.:  regex to match the password failures messages in the logfile.
+# Values:  TEXT  Default:
+#
+failregex = : warning: [-._\w]+\[(?P<host>[.\d]+)\]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed$
+
+
+ [Apache]
+ # Option:  enabled
+ # Notes.:  enable monitoring for this section.