From 7b93d4ded5dfedcdc69f210fed913ea8093a21ae Mon Sep 17 00:00:00 2001 From: Yaroslav Halchenko Date: Tue, 30 May 2006 14:19:08 +0000 Subject: [PATCH] section for saslauthd --- debian/changelog | 4 +- debian/patches/00list | 1 + debian/patches/02_sasl_section.dpatch | 58 +++++++++++++++++++++++++++ 3 files changed, 62 insertions(+), 1 deletion(-) create mode 100755 debian/patches/02_sasl_section.dpatch diff --git a/debian/changelog b/debian/changelog index dd2703cc..6b3c9a89 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,8 +1,10 @@ -fail2ban (0.6.1-7) unstable; urgency=low +fail2ban (0.6.1-8) unstable; urgency=low * Removed bashism (arrays) from init.d script to make it POSIX shell complient (closes: #368218) * Added new proftpd section + * Added new saslauthd section. Thanks to martin f krafft + (closes: #369483) * Mentioned apache2 log file in Other. comment field for FILE in apache section. Nothing has to be changed besides the logfile path to work with apache2 (closes: #342144) diff --git a/debian/patches/00list b/debian/patches/00list index 86e25176..eb9074b2 100644 --- a/debian/patches/00list +++ b/debian/patches/00list @@ -1,3 +1,4 @@ 00_proftpd_section 00_vsftpd_regexp 01_apache2_other +02_sasl_section diff --git a/debian/patches/02_sasl_section.dpatch b/debian/patches/02_sasl_section.dpatch new file mode 100755 index 00000000..f4c9fd77 --- /dev/null +++ b/debian/patches/02_sasl_section.dpatch @@ -0,0 +1,58 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 02_sasl_config.dpatch by +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: Added saslauthd section from martin f krafft + +@DPATCH@ + +diff -x '*~' -Naur fail2ban-0.6.1.pre/config/fail2ban.conf.iptables fail2ban-0.6.1.post/config/fail2ban.conf.iptables +--- fail2ban-0.6.1.pre/config/fail2ban.conf.iptables 2006-05-30 10:03:16.000000000 -0400 ++++ fail2ban-0.6.1.post/config/fail2ban.conf.iptables 2006-05-30 10:13:56.000000000 -0400 +@@ -260,6 +260,46 @@ + # failregex. + + ++[SASL] ++# Option: enabled ++# Notes.: enable monitoring for this section. ++# Values: [true | false] Default: true ++# ++enabled = false ++ ++# Option: port ++# Notes.: specifies port to monitor ++# Values: [ NUM | STRING ] Default: ++# ++port = smtp ++ ++# Option: logfile ++# Notes.: logfile to monitor. ++# Values: FILE Default: /var/log/auth.log ++# ++logfile = /var/log/mail.log ++ ++# Option: timeregex ++# Notes.: regex to match timestamp ++# Values: [Mar 7 17:53:28] ++# Default: \S{3}\s{1,2}\d{1,2} \d{2}:\d{2}:\d{2} ++# ++timeregex = \S{3}\s{1,2}\d{1,2} \d{2}:\d{2}:\d{2} ++ ++# Option: timepattern ++# Notes.: format used in "timeregex" fields definition. Note that '%' must be ++# escaped with '%' (see http://rgruet.free.fr/PQR2.3.html#timeModule) ++# Values: TEXT Default: %%b %%d %%H:%%M:%%S ++# ++timepattern = %%b %%d %%H:%%M:%%S ++ ++# Option: failregex ++# Notes.: regex to match the password failures messages in the logfile. ++# Values: TEXT Default: ++# ++failregex = : warning: [-._\w]+\[(?P[.\d]+)\]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed$ ++ ++ + [Apache] + # Option: enabled + # Notes.: enable monitoring for this section.