Orion Poplawski
21be983620
ChangeLog for firewallcmd-new multiport support
2014-10-30 16:11:34 -06:00
Yaroslav Halchenko
967485c2d0
improving grepping
2014-10-29 23:14:47 -04:00
Yaroslav Halchenko
36abb5ed96
BF: fix $ for % in jail.conf. Debian bug #767255
2014-10-29 13:08:51 -04:00
sebres
c1db282fcd
Merge remote-tracking branch 'remotes/upstream/master' into sebres:ban-time-incr
2014-10-28 16:38:26 +01:00
Yaroslav Halchenko
7acddcbe4a
Post-release boost to .dev
2014-10-27 23:45:51 -04:00
Yaroslav Halchenko
987356d6c0
Changes for the 0.9.1 release versioning
2014-10-27 21:43:17 -04:00
sebres
361c220846
Merge remote-tracking branch 'remotes/upstream/master' into sebres:ban-time-incr;
...
normalize code to python >= 2.6;
2014-10-25 19:05:53 +02:00
pacop
b60e2bf42f
Add portsentry to changelog
2014-10-25 18:17:57 +02:00
sebres
48cd1262fe
Merge 'upstream/master' into sebres:ban-time-incr
2014-10-23 23:34:43 +02:00
Yaroslav Halchenko
e2f49b7334
DOC: very minor (tabs/spaces)
2014-10-23 14:44:10 -04:00
sebres
8f2561e289
Merge remote-tracking branch 'remotes/origin/_tent/cache-config-read' into ban-time-incr
2014-10-20 01:37:36 +02:00
sebres
7d3e6e9935
code review, change log entries added;
2014-10-10 20:06:58 +02:00
sebres
20e6989c73
Merge 'upstream/master' into ban-time-incr:
...
Merge remote-tracking branch 'sebres:cache-config-read-820' into ban-time-incr:
config cache optimized - prevent to read the same config file inside different resources multiple times;
test case: read jail file only once;
+ optimized merge: use OrderedDict.update instead of merge in cycle;
2014-10-08 16:37:07 +02:00
SlowRiot
7b5dc9f24f
adding test case, changelog and thanks entries for apache shellshock filter
2014-09-26 18:48:56 +01:00
sebres
930678cc0e
Merge remote-tracking branch 'remotes/upstream/master' into ban-time-incr
2014-09-16 13:53:15 +02:00
Nick Weeds
2c158fe168
Add apache filter for AH01630 client denied by server configuration
2014-09-14 21:54:05 +01:00
Yaroslav Halchenko
8f521b8551
DOC: Changelog and THANKS for previous changes
2014-09-13 10:27:37 -04:00
Daniel Black
1864f75b3b
Credits and notes from #806
2014-09-08 19:02:37 +10:00
Yaroslav Halchenko
0d9cfb84e3
Merge pull request #778 from yarikoptic/enh/symbiosis
...
ENH: symbiosis-blacklist-allports action
2014-08-20 23:00:11 -04:00
sebres
62c755c1d5
Merge remote-tracking branch 'upstream/master' into ban-time-incr
...
Conflicts resolved:
fail2ban/server/database.py
fail2ban/tests/servertestcase.py
delBan modified (if manually unban):
delete from "bips" also (bad ips)
delete all tickets of this ip, also if currently not banned
2014-08-15 11:39:55 +02:00
Yaroslav Halchenko
3576c509f5
changelog entry for postfix-sasl fix
2014-08-12 11:08:39 -04:00
Yaroslav Halchenko
6fc04c2256
Merge branch 'bf+enh/cyrus-imap' of https://github.com/yarikoptic/fail2ban (with some tune up to Changelog entry)
...
* 'bf+enh/cyrus-imap' of https://github.com/yarikoptic/fail2ban :
ENH: cyrus-imap -- catch also 'user not found' attempts
BF: cyrus-imaps -- catch also for secured daemons
Conflicts:
ChangeLog
2014-08-11 13:09:43 -04:00
Yaroslav Halchenko
818dd59d65
ENH: symbiosis-blacklist-allports action
2014-08-08 11:57:30 -04:00
Yaroslav Halchenko
4a23a7dcf1
Merge pull request #766 from leftyfb/master
...
Added cloudflare action
2014-07-28 15:34:09 -04:00
Yaroslav Halchenko
2756bbe12a
changelog and thanks for the preceding fix
...
Conflicts:
ChangeLog
THANKS
2014-07-28 12:48:50 -04:00
leftyfb
2179c8293c
ChangeLog Added and entry about Cloudflare action
2014-07-28 11:24:38 -04:00
Yaroslav Halchenko
a35b62500f
changelog entries for already merged and upcoming merge
2014-07-28 10:18:33 -04:00
Yaroslav Halchenko
effa1bc757
Merge branch 'master' of github.com:fail2ban/fail2ban
...
* 'master' of github.com:fail2ban/fail2ban:
Update courier-smtp.conf
I don't understand those years.
added Jul 3 & Jul 4
Update courier-smtp.conf
named users + smtp atuh probes
BF: Remove manually unbanned IPs from persistent database
typo
2014-07-28 10:14:40 -04:00
Yaroslav Halchenko
edfdeecfe6
DOC: Changelog for recent merge
2014-07-27 21:48:55 -04:00
Yaroslav Halchenko
3339dc8d84
ENH: cyrus-imap -- catch also 'user not found' attempts
2014-07-25 10:13:04 -04:00
Yaroslav Halchenko
3e5c598b79
BF: cyrus-imaps -- catch also for secured daemons
2014-07-25 10:02:40 -04:00
Steven Hiscocks
01d02ca5e6
BF: Remove manually unbanned IPs from persistent database
...
Stops them being restored when Fail2Ban is restarted. Particularly this
is an issue with bantime < 0
Fixes gh-768
2014-07-19 15:17:32 +01:00
Steven Hiscocks
e301d6c840
DOC: Update ChangeLog for change in b73ed9b
2014-07-19 15:15:38 +01:00
Yaroslav Halchenko
78d8ea2e50
Merge pull request #760 from yarikoptic/enh/exim4_debian_path
...
BF: fix path to the exim log on Debian and Fedora systems
2014-07-18 09:59:08 -04:00
Sean DuBois
84b7e93a47
ENH: Add version command to protocol
...
TST: Add test for version server command
2014-07-15 06:19:13 +00:00
Yaroslav Halchenko
6cddc65cee
BF: path to exim's mainlog on Fedora (Thanks Frantisek Sumsal) + changelog entry
2014-07-14 12:16:12 -04:00
sebres
00b7205a3c
Merge remote-tracking branch 'remotes/upstream/master', fix test cases (see bellow)
...
Conflicts resolved:
ChangeLog
fail2ban/server/filter.py
fail2ban/server/jail.py
fail2ban/tests/actionstestcase.py
Test cases fixed:
testBanActionsAInfo - fail ticket with current time (otherwise ticket will be ignored - ban time too old)
testFail2BanExceptHook - use local sys.__excepthook__ to check was really executed and prevent write error in stderr.
2014-06-24 14:02:24 +02:00
Yaroslav Halchenko
c7de888cd3
DOC: Changelog for previous merge (pass a copy of aInfo)
2014-06-22 10:59:43 -04:00
Yaroslav Halchenko
305b31ae1c
DOC: ChangeLog -- Added an entry about iptables-common.conf
2014-06-22 10:29:23 -04:00
Steven Hiscocks
2d54161696
Merge branch 'kwirk/harmonize-log-msgs'
...
Conflicts:
ChangeLog - Keep all additions
2014-06-22 12:57:49 +01:00
Steven Hiscocks
76a5633ff9
Merge pull request #739 from ranvis/enh-iptables-ipsets
...
ENH: Add <chain> to iptables-ipsets.
2014-06-21 22:48:49 +01:00
sebres
ccf2521a6d
Merge branch 'master' of https://github.com/fail2ban/fail2ban into ban-time-incr;
...
Conflicts in ChangeLog resolved;
obsolete imports removed;
2014-06-19 17:40:00 +02:00
Yaroslav Halchenko
4190a4030c
Merge branch 'sebres-strptime-bug' of https://github.com/kwirk/fail2ban
...
* 'sebres-strptime-bug' of https://github.com/kwirk/fail2ban :
DOC: Tweak ChangeLog and THANKS
DOC: Update docs in reference to time zone related fix
TST: Fix tests due to @sebres fix and based from gh-349 reverts
strptime bug fix: if gmtoff is None we have 1 hour increment of time (through utctimetuple), compare: >>>> datetime.datetime.fromtimestamp(time.mktime(datetime.datetime.now().timetuple())).strftime("%Y-%m-%d %H:%M:%S") '2014-04-29 17:26:31' >>>> datetime.datetime.fromtimestamp(time.mktime(datetime.datetime.now().utctimetuple())).strftime("%Y-%m-%d %H:%M:%S") '2014-04-29 18:26:37'
Conflicts:
ChangeLog
2014-06-16 09:28:41 -04:00
SATO Kentaro
1e1c4ac62a
ENH: Add <chain> to iptables-ipsets.
2014-06-16 21:30:13 +09:00
Steven Hiscocks
f7da091437
ENH: Log unhandled exceptions to Fail2Ban log
2014-06-09 22:27:51 +01:00
Steven Hiscocks
e8131475cd
ENH: Realign and harmonise log messages with getF2BLogger helper
2014-06-09 22:17:00 +01:00
sebres
70080b112a
Merge branch 'master' of https://github.com/fail2ban/fail2ban into ban-time-incr
2014-06-06 19:46:38 +02:00
Steven Hiscocks
1fa8f9fa70
DOC: Tweak ChangeLog and THANKS
2014-05-15 22:18:07 +01:00
Steven Hiscocks
fc4b69a282
DOC: Update ChangeLog fix for ip{,jail}failures action tags
2014-05-15 22:15:12 +01:00
Steven Hiscocks
1c20fd88d4
DOC: Update docs in reference to time zone related fix
2014-05-14 23:04:48 +01:00
Yaroslav Halchenko
2526dbae92
Merge branch 'recursive-tag-fix' of https://github.com/kwirk/fail2ban
...
* 'recursive-tag-fix' of https://github.com/kwirk/fail2ban :
ENH: explicitly define tags which should be escaped
DOC: ChangeLog update for recursive tag bug fix
BF: Tags not fully recursively substituted
Conflicts:
ChangeLog -- kept all as is
2014-05-13 11:23:30 -04:00
Yaroslav Halchenko
c619202d6f
Merge branch 'master' of github.com:fail2ban/fail2ban
...
* 'master' of github.com:fail2ban/fail2ban:
ENH: Match non "Bye Bye" for sshd locked accounts failregex
Even stricter monit regex, now covers entire line
Tidy up filter.d/monit.conf, make regex more complete. Add ChangeLog / THANKS entry. Add test cases.
ENH: Move traceback formatter to from tests.utils to helpers
Block brute-force attempts against the Monit gui
2014-05-10 20:02:47 -04:00
Steven Hiscocks
904b362215
DOC: ChangeLog update for recursive tag bug fix
...
Also minor typo fixes in comments
2014-05-09 20:25:44 +01:00
Steven Hiscocks
77ba065571
Merge pull request #697 from jhmartin/monit_admin_hack
...
Block brute-force attempts against the Monit gui
2014-05-07 22:23:01 +01:00
Yaroslav Halchenko
1f8b554d31
Merge branch 'database-persistent-bans' of https://github.com/kwirk/fail2ban
...
* 'database-persistent-bans' of https://github.com/kwirk/fail2ban :
BF: bantime < 0 database should return all bans, as they are persistent
Conflicts:
ChangeLog - kept all ;)
2014-05-05 23:29:35 -04:00
Yaroslav Halchenko
3eabf4a7bd
Merge pull request #708 from kwirk/ssh-bye-bye
...
ENH: Match non "Bye Bye" for sshd locked accounts failregex
2014-05-05 23:22:57 -04:00
Yaroslav Halchenko
65269365ee
minor
2014-05-05 23:16:18 -04:00
Steven Hiscocks
1e8402cb99
DOC: ChangeLog entry for Python 3.4.0 persistent "/dev/urandom" fix
2014-05-03 12:51:15 +01:00
Steven Hiscocks
bc10b64c69
ENH: Match non "Bye Bye" for sshd locked accounts failregex
2014-04-27 13:35:55 +01:00
Steven Hiscocks
7cc64a14e0
BF: fail2ban-regex assertion error caused by miscounted "missed" lines
...
Caused when removing lines as part of multiline regex, which had been
previously considered missed.
2014-04-27 13:27:11 +01:00
Steven Hiscocks
bbcbefd494
BF: bantime < 0 database should return all bans, as they are persistent
2014-04-22 19:20:44 +01:00
Jason Martin
72bfd14330
Tidy up filter.d/monit.conf, make regex more complete.
...
Add ChangeLog / THANKS entry.
Add test cases.
2014-04-19 13:04:03 -07:00
Steven Hiscocks
03d90c2f42
BF: recidive filter and samples at wrong log level: WARNING->NOTICE
2014-04-19 18:07:23 +01:00
Yaroslav Halchenko
af07b2edf8
very minor
2014-04-18 23:59:24 -04:00
Steven Hiscocks
abfa7fa7e3
DOC: Update ChangeLog
2014-04-03 18:47:38 +01:00
Daniel Black
e3be822245
DOC: nginx-http-auth filter
2014-04-03 21:30:45 +11:00
Steven Hiscocks
dc24d3d494
BF: On jail restart reinstatement of bans, fetch one ticket per IP
...
Closes gh-664
2014-03-29 21:44:39 +00:00
Ruben Kerkhof
1695d5c076
Fix a few typos
...
Found with https://github.com/lucasdemarchi/codespell
Signed-off-by: Ruben Kerkhof <ruben@rubenkerkhof.com>
2014-03-24 13:16:52 +00:00
Steven Hiscocks
7046388291
Merge branch 'database-no-sqlite'
...
Conflicts:
ChangeLog
- Entries added in both branches, both kept
2014-03-22 17:34:38 +00:00
Steven Hiscocks
1470e3c01d
BF: fail2ban.conf reader expected "int" type for `loglevel`
...
Closes #657
2014-03-19 19:09:07 +00:00
Steven Hiscocks
8c129cc283
DOC: Update ChangeLog fixes
2014-03-19 18:59:00 +00:00
Daniel Black
e3839777d1
DOC: ChangeLog for gh-652
2014-03-18 08:02:39 +11:00
Yaroslav Halchenko
65628e303c
Merge commit '0.8.13-1-ga8d0cc9'
...
* commit '0.8.13-1-ga8d0cc9':
DOC: remove duplicate update of Fail2ban_Version
DOC: DEVELOP release note changes
PKG: version release
PKG: include nagios filter/log
DOC/ENH: update man pages for release
Conflicts:
ChangeLog
DEVELOP
MANIFEST
fail2ban/version.py
man/fail2ban-client.1
man/fail2ban-regex.1
man/fail2ban-server.1
2014-03-17 10:25:12 -04:00
Steven Hiscocks
8f4a99f81f
DOC: Document recent changes
2014-03-16 21:59:50 +00:00
Steven Hiscocks
b89d05c57d
DOC: Document recent fixes
2014-03-16 21:55:41 +00:00
Daniel Black
755e35fdfe
DOC: syntax
2014-03-17 08:43:34 +11:00
Daniel Black
c602dea3c3
DOC: new ChangeLog header
2014-03-17 08:43:00 +11:00
Daniel Black
cee3414029
PKG: version release
2014-03-15 19:06:37 +11:00
Daniel Black
9bee8b3257
Merge branch '0.9'
2014-03-15 18:41:34 +11:00
Daniel Black
77fda9498c
ENH: pull asterisk filter change to support syslog from 0.9 branch
2014-03-14 23:15:46 +11:00
Daniel Black
8671b73958
DOC: versioning and release/readme notes
2014-03-14 23:08:25 +11:00
Daniel Black
aa7e8fb9ce
DOC: Credits. close gh-644
2014-03-14 22:30:44 +11:00
Daniel Black
476d79d3cc
ENH: asterisk filter to support syslog format
2014-03-14 09:03:27 +11:00
Steven Hiscocks
0222ff4677
Merge branch 'badips-blacklist' into 0.9
...
Conflicts:
ChangeLog
- entires added in both branches.
Change:
config/action.d/badips.py
- jail.getName() changed to jail.name
2014-03-13 20:01:15 +00:00
Steven Hiscocks
0c63d0061a
DOC: Add documentation for badips.py action
2014-03-13 19:58:32 +00:00
Steven Hiscocks
406fe0f5b6
DOC: Additional entries to ChangeLog
2014-03-12 21:20:24 +00:00
Steven Hiscocks
742e52269a
DOC: Added jail.conf(5) and ChangeLog for "logencoding"
2014-03-12 21:00:25 +00:00
Steven Hiscocks
725a8261fe
DOC: Add items to ChangeLog and readded jail.conf(5) for logpath tail
...
jail.conf change merged from 6a395f4cf7
2014-03-12 20:48:52 +00:00
Daniel Black
cc8ec826c5
MRG: from master 2014-03-02
2014-03-02 14:33:45 +11:00
Daniel Black
c10cc20928
ENH: rename sendmail-spam to sendmail-reject
2014-02-28 08:41:04 +11:00
Daniel Black
3d776afbb0
ENH: add filter for sendmail-{auth,spam}. Closes gh-20
2014-02-26 19:16:49 +11:00
Steven Hiscocks
f68d85a6ac
Merge branch 'master' into 0.9
...
Conflicts:
ChangeLog
Spelling correction of 0.8.13 fixed in master
config/jail.conf
Added nagios and duplicate php-url removal in master
Just nagios added, duplicate not issue in 0.9
2014-02-13 20:14:40 +00:00
Daniel Black
5f4d0ed576
ENH: ssh filter - "Disconnecting: Too many authentication failures.." matching Connection log message
2014-02-13 09:13:46 +11:00
Yaroslav Halchenko
c424e4032d
DOC: minor - replace tabs with spaces for consistent formatting
2014-02-07 00:41:22 -05:00
Daniel Black
1c740636e3
Merge pull request #603 from truxoft/master
...
ENH: Nagios filter
2014-02-06 11:09:49 +11:00
Chris Markle
20886288e5
Correct spelling error in changelog
...
I know it's a nit but still... ;)
2014-02-05 10:44:46 -08:00
Ivo Truxa
a8a43e8f38
ENH: Nagios filter
...
new filter Nagios added
2014-02-03 22:01:22 +01:00
Daniel Black
59b9045e88
MRG: from master 2014-02-02
2014-02-02 13:21:16 +11:00
Daniel Black
9b614ce486
ENH: dovecot filter enhancements
2014-01-29 20:27:45 +11:00
Daniel Black
a749a2780e
Merge pull request #593 from grooverdan/tine
...
ENH: Tine20 filter
2014-01-26 18:50:42 -08:00
Daniel Black
3c48e3f035
DOC: changelog for pure-ftpd filter fixes
2014-01-25 12:22:27 +11:00
Daniel Black
1e1261ccb4
MRG: from master 2014-01-23
2014-01-23 17:45:18 +11:00
Daniel Black
ca57427080
BF: firewallcmd-ipset had non-working actioncheck
2014-01-23 17:41:13 +11:00
Daniel Black
2063d96e59
MRG: import Lars' PR for tine20
2014-01-22 18:12:19 +11:00
Daniel Black
499b33f8a6
DOC: post release versioning
2014-01-22 08:37:51 +11:00
Daniel Black
33dd1733fb
DOC: version and release date to 0.8.12 on 2014-01-22
2014-01-19 16:25:23 +11:00
Daniel Black
a650178bd1
MRG: merge from master 2014-01-19
2014-01-19 14:48:29 +11:00
Daniel Black
10edd994d1
DOC: ChangeLog for kerio filters
2014-01-18 23:21:44 +11:00
Steven Hiscocks
0b4dd6272c
Merge pull request #589 from grooverdan/one-bad-regex-gh-585
...
fault tolerance when pushing multiple configurations
2014-01-18 03:27:52 -08:00
Daniel Black
5ade6a13af
DOC: ChangeLog dateing and normalisation
2014-01-18 21:00:24 +11:00
Daniel Black
058621f9bd
ENH: continue with rest of fail2ban config even if errors. Closes gh-585
2014-01-18 20:16:38 +11:00
Daniel Black
2647461a3c
DOC: ChangeLog. Note incompatible changes and group new filters and actions under New Features
2014-01-18 19:38:25 +11:00
Daniel Black
1452be4a3a
Merge pull request #588 from grooverdan/badips
...
ENH: Badips action (reporting)
2014-01-17 23:10:29 -08:00
Daniel Black
93613e82f0
DOC: credits for action.d/badips
2014-01-15 09:40:18 +11:00
Daniel Black
657da2041c
BF: dovecot filters, session characters and order of session/tls in log messages
2014-01-15 08:02:47 +11:00
Daniel Black
c7f887642d
Merge branch '0.9' into master_to_0.9
2014-01-13 21:23:42 +11:00
Daniel Black
3de80545e0
MRG: from master 2014/01/13
2014-01-13 21:23:39 +11:00
Lars Kneschke
47dd8fb897
ENH: filter for Tine 2.0
2014-01-13 06:04:59 +01:00
Daniel Black
6b0e6b9bca
ENH: add improper command pipelining postfix filter
2014-01-13 06:59:59 +11:00
Daniel Black
cd3e94140c
MRG: complete merge
2014-01-12 21:16:55 +11:00
Daniel Black
f2e55e8499
ENH: add filter for squirrelmail. Closes gh-261
2014-01-12 20:27:36 +11:00
Tomas Pihl
b52a4441fd
Support ACL-events without AccountID. Typically happens when a registration
...
from an unknown domain is performed.
Add credits
2014-01-12 01:28:55 +01:00
Steven Hiscocks
128112d51c
ENH: ejabberd filter
2014-01-09 22:47:17 +00:00
Daniel Black
8333abe420
Merge pull request #557 from grooverdan/apache-botsearch
...
ENH: Apache botsearch + BF: tag substition
2014-01-09 14:11:00 -08:00
Steven Hiscocks
7e8da15fc6
Merge pull request #572 from grooverdan/counterstrike
...
ENH: Counter Strike filter
2014-01-08 12:47:10 -08:00
Daniel Black
b6676dbadc
DOC: spelling of Counter Strike
2014-01-08 07:45:26 +11:00
Yaroslav Halchenko
6532a2e2f7
Merge pull request #548 from grooverdan/exim-honeypot
...
Exim honeypot
2014-01-07 06:14:42 -08:00
Daniel Black
0fb6bc7188
ENH: add filter for Counter Strike 1.6. Closes gh-347
2014-01-07 20:33:57 +11:00
Daniel Black
9e087b508d
MRG: from 0.9
2014-01-07 16:11:40 +11:00
Daniel Black
58ebf659e4
MRG: from 0.9 to make history cleaner
2014-01-07 16:07:58 +11:00
Daniel Black
76468942f9
MRG: complete merge from master
2014-01-07 10:24:23 +11:00
Steven Hiscocks
bb11c29667
Merge pull request #567 from grooverdan/groupoffice-filter
...
ENH: add filter groupoffice. Closes gh-566
2014-01-06 10:31:32 -08:00
Daniel Black
b9cd492e9f
Merge pull request #555 from grooverdan/nagios_fix
...
BF: nagios fix
2014-01-06 03:12:26 -08:00
Daniel Black
3ee6e993c6
MRG: merge ChangeLog for nagios fix
2014-01-06 22:09:10 +11:00
Daniel Black
fecb07f36d
MRG: filter substition
2014-01-06 22:07:49 +11:00
Daniel Black
db7b7bfefa
Credits for groupoffice
2014-01-06 22:00:12 +11:00
alasdairdc
67c44a5001
Update ChangeLog
2014-01-06 10:44:21 +00:00
Daniel Black
a8e0498389
BF: add expression for ssh filter for code 3: SSH2_DISCONNECT_KEY_EXCHANGE_FAILED. closes gh-289
2014-01-05 21:26:26 +11:00
Daniel Black
23f0b854da
MRG: merge in freeswitch
2014-01-04 12:24:40 +11:00
Daniel Black
05b159c74b
Merge pull request #464 from grooverdan/increase-jail-name-length
...
ENH: Actions to have f2b- as prefix instead of fail2ban- as per #462
2014-01-03 14:48:56 -08:00
Daniel Black
3d1a1afca4
MRG: to more recent 0.9
2014-01-04 09:31:05 +11:00
Daniel Black
7c09a61ca5
ENH: add apache-botsearch. Closes gh-544
2014-01-03 23:12:58 +11:00
Daniel Black
b8536490ef
ENH: filter for stunnel from fail2ban wiki
2014-01-03 19:32:29 +11:00
Daniel Black
04d28fd2e1
ENH: add filter freeswitch - as raised on mailing list
2014-01-03 13:00:37 +11:00
Daniel Black
117d3b0466
MRG: horde filter from master
2014-01-03 10:34:59 +11:00
Daniel Black
83f3aeb308
ENH: filter for horde
2014-01-02 23:12:36 +11:00
Daniel Black
9c7bb3b97e
ENH: exim-spam to take honeypot email address as argument. Closes #541
2014-01-01 22:45:13 +11:00
Daniel Black
391b5fc883
MRG: from master again 2014-01-01
2014-01-01 19:28:38 +11:00
Daniel Black
1b037a6f29
DOC: document addition of filter options substitution into failregex/ignoreregex
2013-12-31 19:15:11 +11:00
Daniel Black
856407379b
ENH: add filter openwebmail. Closes gh-543.
2013-12-31 08:09:00 +11:00
Daniel Black
332d37f363
DOC: python-2.6 minimium now. Closes gh-526
...
Clean up ChangeLog and README.md to reflect these changes.
Remove credit from developers for individual changes to be consistent
with the 0.8.12 ChangeLog. Update summary and priority of items listed
in ChangeLog.
2013-12-30 04:57:16 +00:00
Daniel Black
e220210dc4
DOC: fix ChangeLog entry for exim-spam
2013-12-29 21:55:04 +00:00
Daniel Black
dbca949e5e
DOC: typo in ChangeLog
2013-12-29 21:26:30 +00:00
Daniel Black
d727ba639a
ENH: exim-spam to include spamassassin log entry. Closes gh-533
2013-12-29 20:16:37 +00:00
Daniel Black
4a0e428563
DOC: change log for asynchat.push change
2013-12-29 07:11:57 +00:00
Daniel Black
c074773805
ENH: apache modsecurity from 0.9 branch
2013-12-29 07:06:13 +00:00
Daniel Black
be382dae4d
MRG: ufw changelog conflicts
2013-12-29 05:45:06 +00:00
Daniel Black
1f6ece2a40
Merge pull request #490 from grooverdan/firewallcmd-ipset
...
ENH: add firewallcmd-ipset
2013-12-28 21:43:49 -08:00
Daniel Black
ea2a13946e
TST: more test of filters
2013-12-29 05:29:59 +00:00
Daniel Black
c9cfdca396
ENH: add filter for apache-modsecurity
2013-12-28 22:28:11 +00:00
Daniel Black
d3c065bf76
ENH: add PyPy compatibility
2013-12-27 05:15:33 +00:00
Daniel Black
1b7df1181f
BF: apache-2.4 log format fix. Closes gh-516
2013-12-23 08:28:40 +00:00
Yaroslav Halchenko
7af58b9984
Merge branch 'apache-noscripts' of https://github.com/grooverdan/fail2ban
...
* 'apache-noscripts' of https://github.com/grooverdan/fail2ban :
ENH: apache-noscript now matched php-cgi scripts. Closes gh-503
Conflicts:
ChangeLog -- two new entries collided, Reformatted the merged one a bit
2013-12-22 22:28:57 -05:00
Daniel Black
a9b7d33c51
ENH: apache-noscript now matched php-cgi scripts. Closes gh-503
2013-12-19 10:01:24 +00:00
Steven Hiscocks
d22716ab63
ENH: Add nsd filter and amend DateEpoch to match date format
2013-12-18 22:31:54 +00:00
alasdairdc
04c267c307
Updated Changelog
2013-12-18 08:36:30 +00:00
Daniel Black
7c0efc8ec8
MRG: merge so far - flushLogs not working yet
2013-12-16 15:08:34 +00:00
Steven Hiscocks
66e9f06feb
DOC: ChangeLog moved python3 support to refactoring
2013-12-14 17:46:13 +00:00
Steven Hiscocks
401d8aba1f
DOC: Update ChangeLog with systemd backend and persistent database
2013-12-14 17:20:21 +00:00
Daniel Black
f1e593da67
DOC: Changelog for adding firewallcmd-ipset
2013-12-14 10:27:11 +00:00
Daniel Black
f35345ecaa
ENH: add ufw action based off Guilhem Lettron's work in lp-#701522. Closes gh-455
2013-12-14 00:34:12 +00:00
Daniel Black
13ccebe78f
BF: fix actioncheck in firewallcmd
2013-12-13 23:40:51 +00:00
Daniel Black
66374913ec
ENH: add squid filter
2013-12-10 21:24:37 +11:00
Daniel Black
f385439a41
MRG: ChangeLog merge
2013-12-09 09:28:42 +11:00
Daniel Black
80df01bf15
Merge pull request #468 from grooverdan/xarf
...
ENH: action.d/Xarf reporting of messages
2013-12-08 14:26:37 -08:00
Steven Hiscocks
7115f64f83
Merge pull request #470 from grooverdan/flush-logs
...
BF: create flushlogs command to prevent logrotation clobbering logtarget...
2013-12-06 16:30:16 -08:00
Daniel Black
e07ba41870
Merge pull request #463 from grooverdan/firewall-cmd-direct-new-length-too-long
...
BF: firewall-cmd-direct-new was too long. Thanks Joel.
2013-12-05 12:42:55 -08:00
Daniel Black
b5d6310d28
BF: create flushlogs command to prevent logrotation clobbering logtarget. Closes gh-458
2013-12-04 20:51:30 +11:00
Daniel Black
9c1a679b7f
DOC: changelog for xarf-login-attack action
2013-12-01 17:51:31 +11:00
Yaroslav Halchenko
2c1199cce0
Let's progress and mark a2 release toward 0.9.0
2013-11-30 12:25:17 -05:00
Daniel Black
95845b7b65
BF: complain action could match too many IP addresses
2013-11-30 17:47:10 +11:00
Yaroslav Halchenko
3a5983ab0b
Merge branch 'bf/syslog-format' of https://github.com/yarikoptic/fail2ban
...
* 'bf/syslog-format' of https://github.com/yarikoptic/fail2ban :
Changelog entries for the last changes
ENH: added optional [PID] matching in recidive.conf
ENH: reintroducing levelnameinto syslog msgs, time stamp and indentation in non-syslog msgs
BF/ENH: include [PID] into logging msgs, remove indentation from syslog messages
Conflicts:
ChangeLog
2013-11-29 19:58:56 -05:00
Daniel Black
f7504d5b64
MRG: conflict in THANKS
2013-11-30 10:39:19 +11:00
Yaroslav Halchenko
982d5abbef
Merge branch 'namelength20' of https://github.com/grooverdan/fail2ban
...
* 'namelength20' of https://github.com/grooverdan/fail2ban :
DOC: document rational behind 20 character jail name limit
Conflicts:
ChangeLog
2013-11-29 10:09:16 -05:00
Yaroslav Halchenko
25e967f23b
Merge branch 'mysqld-syslog-iptables-name-too-long' of https://github.com/grooverdan/fail2ban
...
* 'mysqld-syslog-iptables-name-too-long' of https://github.com/grooverdan/fail2ban :
BF: jail name mysqld-syslog-iptables too long. removed -iptables. Thanks Stefan (#447 )
Conflicts:
ChangeLog
2013-11-29 10:02:31 -05:00
Daniel Black
b9b2ddf996
BF: smtps not IANA standard. Closes #447
2013-11-29 21:47:53 +11:00
Daniel Black
cade746307
BF: jail name mysqld-syslog-iptables too long. removed -iptables. Thanks Stefan ( #447 )
2013-11-29 21:45:11 +11:00
Daniel Black
af4feb0c92
Actions to have f2b- as prefix instead of fail2ban- as per #462
2013-11-29 19:08:38 +11:00
Daniel Black
fb666b69ff
BF: firewall-cmd-direct-new was too long. Thanks Joel.
2013-11-28 23:35:05 +11:00
Daniel Black
99838440c8
DOC: document rational behind 20 character jail name limit
2013-11-28 23:18:34 +11:00
Daniel Black
227f27ce6b
ENH: added multiline filter for sshd filter
2013-11-25 14:55:41 +11:00
Daniel Black
13223c33f5
MRG: recidive-protocol-all
2013-11-25 08:22:09 +11:00
Yaroslav Halchenko
085ebbe1de
Changelog entries for the last changes
2013-11-24 11:55:58 -05:00
Daniel Black
9a82bc3c61
BF: kernel messages can have space. Thanks ag4ve(shawn). Closes #448
2013-11-24 18:21:02 +11:00
Daniel Black
98eacdf333
MRG/BF: merge from master. Fix bugs in iso8601
2013-11-24 16:36:06 +11:00
Yaroslav Halchenko
629e9ae445
Merge pull request #443 from grooverdan/apache-authfix
...
BF: apache filters using error log weren't matched when referer existed ...
2013-11-18 15:53:39 -08:00
Daniel Black
284f811c91
BF: apache filters using error log weren't matched when referer existed in HTTP header
2013-11-19 10:27:55 +11:00
Yaroslav Halchenko
491165c929
Merge pull request #438 from grooverdan/solid-pop3d
...
ENH: filter for Solid-pop3d
2013-11-17 17:34:46 -08:00
Daniel Black
8aa20a7b0e
ENH: credits for #440 recidive jail protocol=all
2013-11-18 07:59:56 +11:00
Daniel Black
dab2ddb9da
ENH: recidive jail to block all protocols. Closes #440
2013-11-18 07:57:16 +11:00
Yaroslav Halchenko
82174ea4c4
Changelog for preceding proftpd date format change
2013-11-16 22:18:51 -05:00
Daniel Black
88eff70774
ENH: filter.d/solid-pop3d added
2013-11-16 09:43:15 +11:00
Daniel Black
ed212fcdcc
DOC: new ChangeLog header
2013-11-16 09:40:05 +11:00
Daniel Black
1ac7b53cad
MRG: merge from master
2013-11-13 09:16:45 +11:00
Daniel Black
d0498bec69
DOC: finalise 0.8.11 release
2013-11-13 08:05:08 +11:00
Daniel Black
eb9663eb4f
BF/ENH: asterisk connection ID is a hex not decimal number. Add "Rejecting unknown SIP connection from <HOST>" regex thanks to Jonathan Lanning
2013-11-12 09:22:41 +11:00
Yaroslav Halchenko
49024fe6ea
DOC: minor typos in ChangeLog
2013-11-08 14:36:56 -08:00
Yaroslav Halchenko
ea8fce6308
Merge pull request #426 from yarikoptic/bf/openssh6.3-regex-injection
...
openssh 6.3 regex injection vectors: inject into ruser and/or exploiting pre-specified limits set for user provided data
2013-11-08 14:35:18 -08:00
Daniel Black
d6bbe03861
Merge pull request #424 from grooverdan/nginx-auth
...
ENH: add filter.d/nginx-http-auth. Partially forfils #405
2013-11-08 14:24:02 -08:00
Yaroslav Halchenko
750e0c1e3d
BF: disallow exploiting of non-greedy .* in previous fix by providing too long rhost -- do not impose length limits for user-provided input
...
since daemon might eventually change reported length and we would need to adjust anyways. So limiting
in length does not provide additional security but allows for a possible injection vector
2013-11-08 10:10:33 -08:00
Yaroslav Halchenko
eace931c19
Changelog for prior changes (gen_buildbots)
2013-11-07 15:47:25 -08:00
Daniel Black
a148d35d70
ENH: add filter.d/nginx-http-auth. Partially forfills #405
2013-11-08 10:06:40 +11:00
Daniel Black
cb982ef921
ENH: multiline filter for sendmail-spam. Closes gh-418
2013-11-08 08:55:45 +11:00
Yaroslav Halchenko
28ee7ba123
DOC: keeping Changelog release-phrases uniform, simplified intro, unified
2013-11-06 14:04:30 -05:00
Yaroslav Halchenko
f26fba9c19
DOC: Untabifying and reindenting a bit ChangeLog
2013-11-06 13:47:45 -05:00
Daniel Black
0730db9b2b
Merge pull request #416 from grooverdan/debian-bug-665925-wuftpd-pam
...
BF: wuftpd pam filter fix (Debian bug 665925)
2013-11-05 18:39:01 -08:00
Daniel Black
e55b24c533
BF: fix dovecot filter for newer failure message. Closes Debian bug #709324
2013-11-06 12:51:21 +11:00
Daniel Black
8b54523316
BF: fix to filter.d/wuftp to support pam authentication - Debian bug #665925
2013-11-06 12:13:37 +11:00
Daniel Black
ac1f45d18c
Merge pull request #412 from grooverdan/firewalld
...
ENH: enhance firewall-cmd to use firewall-0.8.3's --remove-rules
2013-11-05 16:46:18 -08:00
Daniel Black
87f68d7564
firewalld-0.3.8 release that support --remove-rules out so documenting this.
2013-11-06 11:37:56 +11:00
Daniel Black
47d35c9d80
MRG: 0.8.11 to 0.9
...
Epnoc of selinux is now true UTC
Merge multiline support and date detection in filter
2013-11-02 15:59:05 +11:00
Daniel Black
4ec0e3f087
DOC: version 0.8.11.pre1
2013-10-31 10:51:37 +11:00
Daniel Black
3b2083b06d
DOC: ChangeLog header and merge
2013-10-31 10:44:40 +11:00
Daniel Black
2810f97fe5
DOC: merge ChangeLog
2013-10-31 09:07:06 +11:00
Daniel Black
3a4ba2dba6
DOC: ChangeLog - TODO top summary before final release
2013-10-31 01:11:42 +11:00
Daniel Black
c19a685ee3
DOC: version 0.8.11.pre
2013-10-31 00:58:48 +11:00
Daniel Black
8441539988
DOC: reorder bits of changelog
...
The enhancements list was too long an maybe not always appropriate.
Reclassified changes to filters to catch new versions as bug fixes
since the new version of the application is effectively broken.
Moved large enhancements to New Features.
2013-10-31 00:43:02 +11:00
Daniel Black
c3f9c9aa60
BF: filter.d/dropbear
...
Add PAM failures which is in dropbear-2013.60 in srv-authpam.c
Patch
http://www.unchartedbackwaters.co.uk/files/dropbear/dropbear-0.52.patch
obviously has exit with lower case e so adjust regex for both.
svr-authpasswd.c in 2013.60 (at bottom) for second regex ends after the
IP so the regex was altered.
.*\s* can be compressed to .*
2013-10-31 00:21:30 +11:00
Daniel Black
95f3f38682
MRG: merge ChangeLog and jail.conf
2013-10-30 20:19:41 +11:00
Daniel Black
c7b6d789ca
DOC: add ChangeLog for #392
2013-10-30 20:16:22 +11:00
Daniel Black
e3150044fd
BF: fix selinux
...
TST: ignore *common.conf files in test cases as these are included
BF: Remove USER_LOGIN from selinux-ssh as its a duplicate message
ENH: add sample jail.conf
2013-10-30 20:05:49 +11:00
Daniel Black
d451c2a231
FIX: vsftp improvements from Rich Mellor on mailing list
2013-10-26 09:51:25 +11:00
Daniel Black
88d8111db1
DOC: changelog for selinux-ssh too
2013-10-22 23:18:10 +11:00
Daniel Black
b61fe0f12d
Merge pull request #378 from grooverdan/sasl
...
ENH: filter.d/postfix-sasl - anchor regex at start and rename from filter.d/sasl
2013-10-22 04:51:24 -07:00
Daniel Black
4ecc063bd0
ENH: rename filter.d/sasl -> filter.d/postfix-sasl
2013-10-22 22:40:29 +11:00
Daniel Black
9ca5db7059
DOC: firewalld distro agnostic
2013-10-15 06:51:51 +11:00
Daniel Black
0d8d1ae26c
ENH: new action.d/firewall-cmd-direct-new.conf from Redhat Bugzilla #979622
2013-10-14 22:36:01 +11:00
Daniel Black
123ad1cc9c
MRG: Merge branch 'asterisk-common-jail'
2013-10-14 22:29:56 +11:00
Daniel Black
6ef33981e3
ENH: new asterisk jail to replace asterisk-(tcp|udp) (now that gh-37 is fixed)
2013-10-10 09:41:05 +11:00
Daniel Black
351eb5ec8f
ENH: filter.d/qmail - anchor at start. Add another regex for http://www.tjsi.com/rblsmtpd/faq/ patch to rblsmtpd
2013-10-09 16:44:48 +11:00
Daniel Black
2d1bd54439
Merge pull request #379 from grooverdan/webmin
...
ENH: filter.d/webmin anchor at start and use syslog
2013-10-08 20:13:14 -07:00
Yaroslav Halchenko
500968874e
Merge pull request #381 from grooverdan/suhosin
...
ENH: filter.d/suhosin - anchor regex at start
2013-10-08 19:49:51 -07:00
Yaroslav Halchenko
a7b1b802e0
Merge pull request #382 from grooverdan/vsftpd
...
Vsftpd
2013-10-08 19:47:38 -07:00
Daniel Black
46386412a4
ENH: filter.d/vsftpd - pam regex as syslog and anchored at start
2013-10-05 20:02:40 +10:00
Daniel Black
9637c27873
ENH: filter.d/suhosin - anchor regex at start
2013-10-05 19:39:39 +10:00
Daniel Black
13bcc9aa84
ENH: filter.d/sogo-auth - anchor regex at start
2013-10-05 19:27:07 +10:00
Daniel Black
b64bf3fa7b
ENH: filter.d/webmin anchor at start and use syslog
2013-10-05 19:18:44 +10:00
Daniel Black
f4c7c8f4b3
ENH: sasl - anchor regex at start
2013-10-05 18:59:41 +10:00
Daniel Black
c1d1c181ce
DOC: document time detector changes more thoroughly
2013-10-02 12:27:54 +10:00
Daniel Black
dd10eaa5c0
DOC: improve ChangeLog entry
2013-10-02 12:19:41 +10:00
Daniel Black
caf284d518
DOC: ChangeLog deconflict
2013-10-02 09:11:15 +10:00
Daniel Black
ba8183b116
Merge pull request #372 from grooverdan/uw-imap
...
ENH: filter.d/uwimap-auth added. Closes #18
2013-10-01 15:13:11 -07:00
Daniel Black
a1eaa5f755
ENH: filter.d/selinxu added. Closes #296
2013-10-01 09:59:15 +10:00
Daniel Black
778f09debe
DOC/ENH: __md5hex regex defination to common.conf. Document debian bug #
2013-10-01 09:03:33 +10:00
Daniel Black
b3b62d65bf
ENH: filter.d/uwimap-auth added. Closes #18
2013-09-29 18:06:27 +10:00
Daniel Black
2ad26682a9
DOC: ChangeLog for filter.d/sshd
2013-09-29 17:31:49 +10:00
Daniel Black
e12d389c65
MRG/DOC: jail.conf resolution, ChangeLog fixes
2013-09-29 08:21:13 +10:00
Mark McKinstry
ea112b450b
add ChangeLog and THANKS entry
2013-09-25 18:04:05 -04:00
Daniel Black
4b5ecbccd1
ENH: debuggex URLs with fail2ban-regex
2013-09-22 13:20:17 +10:00
Daniel Black
9805d39b60
MRG: merge date changes to support timezones
2013-09-20 18:22:32 +10:00
Daniel Black
8c2a5612ed
DOC: resolve ChangeLog conflicts
2013-09-19 19:38:28 +10:00
Daniel Black
2a805452c6
DOC: resolve ChangeLog conflicts
2013-09-19 19:28:39 +10:00
Daniel Black
3be7dcd701
DOC: resolve ChangeLog conflicts
2013-09-19 19:23:02 +10:00
Yaroslav Halchenko
596abde712
Merge pull request #352 from grooverdan/recidive
...
ENH: filter.d/recidive - anchor regex at start and support f2b SYSLOG target
2013-09-16 19:51:42 -07:00
Daniel Black
30bb1a77a3
ENH: added syslog prefix to pam-generic filter. Disable regex match for pre 2006 (< 0.99.2.0) versions on linux-pam
2013-09-17 10:50:46 +10:00
Daniel Black
ee497ff1cb
ENH: filter mysqld-auth can be a is a syslog based service so anchor it using syslog prefix
2013-09-17 07:57:19 +10:00
Daniel Black
13ec9d58c0
ENH: filter gssftpd is a syslog based service so anchor it using syslog prefix
2013-09-17 07:25:23 +10:00
Yaroslav Halchenko
bb32295b50
DOC: minor - untabified few entries in the ChangeLog
2013-09-16 09:49:24 -04:00
Yaroslav Halchenko
38b07ca46e
BF: catch and report exceptions while executing commands in client interactive mode ( Close #353 )
2013-09-15 23:05:32 -04:00
Daniel Black
504111b0b1
ENH: filter.d/recidive - anchor regex at start and support f2b SYSLOG target
2013-09-16 01:22:42 +10:00
Daniel Black
d0098b0213
ENH: add timezone offest and subsecond support to Datedetector
2013-09-09 03:37:59 +10:00
Daniel Black
1f1a56174f
MRG: merge from master
2013-09-08 21:02:35 +10:00
Daniel Black
ad291d7e38
Merge pull request #346 from grooverdan/bsd-ipfw-default-unreach-port
...
BF: action.d/bsd-ipfw - use blocktype instead of unused action for icmp ...
2013-09-04 16:18:19 -07:00
Daniel Black
e5f1a7f050
Merge pull request #344 from grooverdan/osx
...
ENH: OSX ipfw based on Andy Fragen's work
2013-09-04 16:16:16 -07:00
Yaroslav Halchenko
8ae55fe03b
ChangeLog entries (+few typo fixes) for the last merges
2013-08-31 10:04:03 -04:00
Daniel Black
6b0e2289d4
Merge pull request #335 from grooverdan/gh-333-bind
...
ENH: filter.d/named-refused.conf - BIND 9.9.3 regex changes. Closes gh-333
2013-08-30 21:34:22 -07:00
Daniel Black
f2bcf84893
BF: action.d/bsd-ipfw - use blocktype instead of unused action for icmp rejecting blocked packets
2013-08-31 11:40:04 +10:00
Daniel Black
b31799a322
ENH: add action.d/osx-afctl anonymously contributed on f2b wiki
2013-08-31 10:51:04 +10:00
Daniel Black
908d4adf6f
DOC: credits and thanks for Andy for osx-ipfw
2013-08-31 09:37:15 +10:00
Daniel Black
7cc3e8a8c0
BF: Invert expression on actionstop in bsd-ipfw.conf to ensure exit status 0 on success. Closes gh-343
2013-08-31 08:59:02 +10:00
Daniel Black
d5684a0834
BF: filter.d/routecube-auth - time offset can be positive or negative
2013-08-28 11:57:38 +10:00
Daniel Black
1aabee20f6
DOC: credits for gh-338
2013-08-26 08:42:00 +10:00
Daniel Black
ef903db3c9
ENH: filter.d/named-refused.conf - BIND 9.9.3 regex changes. Closes gh-333
2013-08-25 22:44:30 +10:00
Daniel Black
cfb7dba268
DOC: merge ChangeLog
2013-08-25 21:26:13 +10:00
Daniel Black
b589533d69
Merge branch 'master' into kwirk-merge
...
Conflicts:
ChangeLog
testcases/files/logs/dropbear
2013-08-25 21:21:14 +10:00
Daniel Black
ced271b908
ENH: date for apache-2.4 - adds milliseconds
2013-08-25 21:11:47 +10:00
Yaroslav Halchenko
c84a2e595a
ENH(BF): put 'standard' template after more detailed ones with day of week and year
...
otherwise years present in the freshly contributed by Dan apache regexes do not match
although should have. I had also to adjust failing now vsftpd test
2013-08-25 17:52:12 +10:00
Daniel Black
a9eb8a76c6
merge of change log and apache-auth differences
2013-08-25 16:51:35 +10:00
Yaroslav Halchenko
42f3aa9f62
Merge pull request #329 from grooverdan/bind-unauth-zonetransfer
...
Bind unauth zonetransfer. Closes #323
2013-08-19 06:48:13 -07:00
Daniel Black
6a36ff1a4a
BF: order mailx arguments with dest email address last - redhat bugzilla 998020. Closes gh-328
2013-08-19 22:36:58 +10:00
Daniel Black
61d43608ae
ENH: filter.d/postfix - add filter for VRFY. Closes gh-322
2013-08-19 18:42:39 +10:00
Daniel Black
5d451bc4d6
ENH: add refused zone tranfer to named-refused filter. closes #323
2013-08-18 22:19:31 +10:00
Daniel Black
d5291517a7
MISC: merge from master
2013-07-28 19:43:54 +10:00
Daniel Black
56faf7f5ad
DOC: fix ChangeLog merge
2013-07-28 18:02:38 +10:00
Steven Hiscocks
11100a2fc0
DOC: Changelog additions for regex changes
2013-07-26 17:20:05 +01:00
Daniel Black
fcf79b475f
ENH: new filter perdition.conf
2013-07-19 20:14:53 +10:00
Steven Hiscocks
1eea0dcec8
Merge branch 'master' into 0.9
...
Conflicts:
ChangeLog
bin/fail2ban-regex
bin/fail2ban-testcases
config/jail.conf
fail2ban/server/failregex.py
fail2ban/server/filter.py
fail2ban/tests/files/logs/lighttpd
fail2ban/tests/files/logs/mysqld.log
fail2ban/tests/files/logs/wu-ftpd
fail2ban/tests/filtertestcase.py
fail2ban/tests/utils.py
testcases/files/logs/lighttpd
testcases/files/logs/lighttpd-auth
testcases/files/logs/mysqld-auth
testcases/files/logs/mysqld.log
testcases/files/logs/wu-ftpd
testcases/files/logs/wuftpd
2013-07-16 23:16:22 +01:00
Yaroslav Halchenko
90ec82669c
DOC: changelog entries for preceeding changes
2013-07-16 15:10:41 -04:00
Steven Hiscocks
728399c39e
Merge pull request #281 from kwirk/dovecot-filter
...
ENH: dovecot filter additions for session, time value and blank user
2013-07-14 05:18:04 -07:00
Daniel Black
ab10664b57
ENH: action.d/hostsdeny to take daemon_list arguement as suggested in README.Solaris
2013-07-14 16:20:21 +10:00
Daniel Black
bf54db7ce7
ENH: ChangeLog notes for apache-auth enhancements
2013-07-11 23:10:44 +10:00
Daniel Black
6ce41a611d
BF: fix filter on apache-auth. Closes #286
2013-07-11 22:13:51 +10:00
Daniel Black
1d6d5a7aae
DOC: ChangeLog merge confict
2013-07-09 08:41:28 +10:00
Daniel Black
174e3dba6d
DOC: Note on new dependency - ed for hosts_deny
2013-07-09 08:36:53 +10:00
Daniel Black
5412d7336f
DOC: ChangeLog confict
2013-07-09 08:23:44 +10:00
Daniel Black
1f5097649c
DOC: ChangeLog for exim-spam.conf filter and tabs->spaces in changelog
2013-07-09 08:20:13 +10:00
Yaroslav Halchenko
5f04b4954f
Merge pull request #280 from yarikoptic/master
...
BF+ENHs: polling backend tracks ino and size now in addition to mtime, filters do not read file unless it has content + few other minor issues
2013-07-07 08:33:55 -07:00
Steven Hiscocks
bfa2b9dec3
ENH: dovecot filter additions for session, time value and blank user
2013-07-05 18:36:02 +01:00
Alexander Dietrich
2155f6bfa5
Update ChangeLog and jail.conf example
2013-07-04 08:57:52 +02:00
Yaroslav Halchenko
5d7ab9e7fb
DOC: Changelog for preceding changes
2013-07-02 23:38:27 -04:00
Daniel Black
256f60adae
DOC: improved log message
2013-07-03 09:01:24 +10:00
Yaroslav Halchenko
e6ebcf6687
Merge branch 'dovecot' of https://github.com/grooverdan/fail2ban
...
* 'dovecot' of https://github.com/grooverdan/fail2ban :
ENH: remove non-capturing groups for readibility
BF: fix dovecot filter for when no TLS is enabled on pop/imap
Conflicts:
ChangeLog -- changelog entries. Also untabified few other spots
2013-07-02 10:12:51 -04:00
Yaroslav Halchenko
f0f237fa05
Merge pull request #269 from grooverdan/asterisk
...
ENH: filter.d/asterisk - consolidate log prefix regex and add a few fail messages
2013-07-02 07:04:10 -07:00
Daniel Black
aebd24ec54
BF: replace with ed so its cross platform, fixes permission problem gh-266, and Yaroslav doesn't revert to perl
2013-07-02 20:09:27 +10:00
Daniel Black
72f9e6a51e
ENH/TST: more samples and rejection types for sender verify fail and rejected RCPT
2013-07-01 21:50:35 +10:00
Daniel Black
3b76fc79f9
BF: fix dovecot filter for when no TLS is enabled on pop/imap
2013-07-01 21:12:51 +10:00
Steven Hiscocks
1dbba35cd9
Merge branch 'master' into 0.9
...
Conflicts:
fail2ban/client/jailreader.py
fail2ban/tests/clientreadertestcase.py
fail2ban/tests/files/logs/sshd
2013-06-29 20:31:26 +01:00
Yaroslav Halchenko
1b170b2aef
BF: support apache 2.4 more detailed error log format. Close #268
2013-06-28 09:49:36 -04:00
Yaroslav Halchenko
6d331bcbea
BF: make colon after [daemon] optional. Close #267
2013-06-27 11:44:47 -04:00
Daniel Black
fa7a105483
ENH: filter.d/asterisk - consolidate log prefix regex and add a few fail messages
2013-06-27 09:16:14 +10:00
Yaroslav Halchenko
b9e971c25d
Merge branch 'exim' of https://github.com/grooverdan/fail2ban
...
* 'exim' of https://github.com/grooverdan/fail2ban :
DOC: credits/blame to me for changes to exim
ENH: new exim filter regexs. Also note a begining PID in this format. Thanks to ftoppi for the log entries
TST/ENH: Improve regex around exim
2013-06-23 00:21:28 -04:00
Yaroslav Halchenko
61f81c6b2f
Changelog entries with close statements for recent changes
2013-06-21 11:12:44 -04:00
Yaroslav Halchenko
2974cac40c
RF: log all logging output from fail2ban-client to stderr. Close #264
...
otherwise it
1. 'interferes' with meaninful output of the client
2. if ERROR is logged it better go to stderr and separating ERROR from other levels is not that transparent with python's logging
2013-06-21 11:12:36 -04:00
Yaroslav Halchenko
8487cb2e90
Merge commit '0.8.10-31-g1ab0f0f' into 0.9
...
* commit '0.8.10-31-g1ab0f0f': (24 commits)
BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address
ENH: readibility thanks to Yaroslav
DOC: Changelog for fail2ban-regex RF
DOC: Changelog for asterisk hardening
ENH: fail2ban-regex -- add specification of loglevels to enable
RF: reworked -regex cmdline tool to use optparse, some unification and enhancement of outputs
ENH: 'heavydebug' level == 5 for even more debugging in tricky cases
ENH: asterisk -- use \S instead of [^:] + prefix failregex with ^\[
BF: missed a space
BF: [SSL-out] is optional in assp
ENH: regex hardening on assp
ENH: anchor a bit mor. Use \d and \w where possible. Escape a literal .
TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15
ENH: proftpd chan accept usernames with spaces
ENH: injection of fail data into USER field
ENH: dovecot regexs rewritten and extra failures
ENH: proftp regex hardening and log messages
ENH/BF: exim improvements with sample
BF: fix to proxy port in 3proxy example
ENH: sample log + more specific regex
...
Conflicts: -- it was a messy merge/resolution.
ChangeLog
bin/fail2ban-regex
fail2ban-testcases
fail2ban/server/filter.py
2013-06-18 20:21:23 -04:00
Yaroslav Halchenko
1ab0f0f9e3
Merge branch 'master' of https://github.com/yarikoptic/fail2ban
...
* 'master' of https://github.com/yarikoptic/fail2ban :
DOC: Changelog for fail2ban-regex RF
ENH: fail2ban-regex -- add specification of loglevels to enable
RF: reworked -regex cmdline tool to use optparse, some unification and enhancement of outputs
ENH: 'heavydebug' level == 5 for even more debugging in tricky cases
Conflicts:
ChangeLog
2013-06-15 10:52:05 -04:00
Daniel Black
b8cfda68b8
ENH: new exim filter regexs. Also note a begining PID in this format. Thanks to ftoppi for the log entries
2013-06-16 00:19:37 +10:00
Yaroslav Halchenko
9d4b613ee4
Merge branch '3proxy' of https://github.com/grooverdan/fail2ban
...
* '3proxy' of https://github.com/grooverdan/fail2ban :
BF: fix to proxy port in 3proxy example
ENH: sample log + more specific regex
BF: authentication errors end in 01-09 but the beginning part indicates the service as per https://github.com/fail2ban/fail2ban/issues/246#issuecomment-19327955 thanks to ykimon
BF: need to anchor the start to avoid another repeat of DoS injection like Apache
ENH: stricter regex thanks to Steven Hiscocks (kwirk)
DOC: credits
Conflicts:
ChangeLog
2013-06-14 12:32:51 -04:00
Yaroslav Halchenko
173fe48e77
Merge branch 'exim' of https://github.com/grooverdan/fail2ban
...
* 'exim' of https://github.com/grooverdan/fail2ban :
BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address
ENH: readibility thanks to Yaroslav
ENH/BF: exim improvements with sample
Conflicts:
ChangeLog
2013-06-14 12:28:07 -04:00
Yaroslav Halchenko
ec629ab4e8
Merge branch 'proftpd' of https://github.com/grooverdan/fail2ban
...
* 'proftpd' of https://github.com/grooverdan/fail2ban :
ENH: proftpd chan accept usernames with spaces
ENH: injection of fail data into USER field
ENH: proftp regex hardening and log messages
Conflicts:
ChangeLog
2013-06-14 12:16:59 -04:00
Yaroslav Halchenko
ab2c738b43
Merge branch 'dovecot' of https://github.com/grooverdan/fail2ban
...
* 'dovecot' of https://github.com/grooverdan/fail2ban :
TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15
ENH: dovecot regexs rewritten and extra failures
Conflicts:
ChangeLog -- merged entries
2013-06-14 12:14:40 -04:00
Yaroslav Halchenko
948be73115
Merge branch 'assp' of https://github.com/grooverdan/fail2ban
...
* 'assp' of https://github.com/grooverdan/fail2ban :
BF: missed a space
BF: [SSL-out] is optional in assp
ENH: regex hardening on assp
Conflicts:
ChangeLog -- merged the two entries into 1
2013-06-13 23:32:45 -04:00
Yaroslav Halchenko
77044fce35
DOC: Changelog for fail2ban-regex RF
2013-06-13 23:21:48 -04:00
Yaroslav Halchenko
9b351350dd
DOC: Changelog for asterisk hardening
2013-06-13 23:19:28 -04:00
Daniel Black
d4940563d3
ENH: regex hardening on assp
2013-06-14 08:55:25 +10:00
Daniel Black
dbe7ffe050
ENH: dovecot regexs rewritten and extra failures
2013-06-13 23:52:15 +10:00
Daniel Black
4c67a269bf
ENH: proftp regex hardening and log messages
2013-06-13 22:11:05 +10:00
Daniel Black
3e3802512a
ENH/BF: exim improvements with sample
2013-06-13 17:44:18 +10:00
Yaroslav Halchenko
f6cb981fc0
Merge commit '0.8.10-1-g460e09a' into 0.9
...
* commit '0.8.10-1-g460e09a':
it was not the end of the world and we should continue
DOC: add information on where to report vulnerabilities + pointer to HOWTO_Seek_Help
Changes for 0.8.10 release (changelog, version, etc)
BF: anchor apache- filters. Close #248
DOC: credits for gh-244
Filter Asterisk: Add sample log entry to testcase.
Filter Asterisk: Add AUTH_UNKNOWN_DOMAIN error to list
ENH: purge a few more .*
DOC: credits
DOC: how to do filter enhancements
TST: normalize logs to use example.com and 1.2.3.4 as IP
ENH/BF: constrain regex. Fix ACL error regex
ENH: port optional
Update asterisk
Update asterisk.conf
Conflicts:
ChangeLog
DEVELOP
README.md
fail2ban/version.py
2013-06-12 21:30:47 -04:00
Yaroslav Halchenko
460e09af66
it was not the end of the world and we should continue
2013-06-12 21:22:26 -04:00
Yaroslav Halchenko
921d9a8e4b
DOC: add information on where to report vulnerabilities + pointer to HOWTO_Seek_Help
...
originally following command was used to add header to all config files:
sed -ie '/# Author/ i\# Please report vulnerabilities to fail2ban-vulnerabilities at lists dot sourceforge dot net\n# and see http://www.fail2ban.org/wiki/index.php/HOWTO_Seek_Help for generic bug-reports.\n#' action.d/* filter.d/*
but it would be overkill ATM causing havoc in user-tuned configs -- postponed for now
Also adjusted the release date for today (by mistake in 1 commit ... sorry)
2013-06-12 13:21:12 -04:00
Yaroslav Halchenko
728b5e8bf4
Changes for 0.8.10 release (changelog, version, etc)
2013-06-11 19:20:50 -04:00
Daniel Black
16d63434ef
DOC: credits
2013-06-11 23:56:09 +10:00
Daniel Black
4787777cee
DOC: credits for gh-244
2013-06-11 10:30:56 +10:00
Daniel Black
28fc14d010
DOC: credits
2013-05-30 10:27:30 +10:00
Yaroslav Halchenko
a3161f59fa
Merge commit '0.8.9-13-g39d32e0' into 0.9
...
* commit '0.8.9-13-g39d32e0':
Changelog for previous PR
DOC: Changelog entry fro preceeding merge from Terence
TST: Fix fail2ban.conf reader test for unreliable dictionary order
failregex when roundcube log driver is set to 'syslog'
fixed failregex line for roundcube 0.9+
TST: test all stock jails to have actions and correctly specifying blocktype
CFG: assure actions for all the jails
BF: blocktype must be defined within [Init] -- adding [Init] section. Close #232
ENH: since it seems the default is to use file based logging, $syslog is in Should-{Start|Stop} like Debian https://github.com/fail2ban/fail2ban/blob/debian/debian/fail2ban.init
ENH: opensuse script from opensuse: https://build.opensuse.org/package/view_file?expand=1&file=fail2ban.init&package=fail2ban&project=openSUSE%3AFactory
Conflicts:
ChangeLog
config/jail.conf
testcases/clientreadertestcase.py -- had to "git show XXX | patch -p2" under tests/ 2 commits: 8a57ffd
7a4db4b
2013-05-29 11:32:35 -04:00
Yaroslav Halchenko
39d32e0352
Changelog for previous PR
2013-05-29 09:56:15 -04:00
Yaroslav Halchenko
567cd353a1
DOC: Changelog entry fro preceeding merge from Terence
2013-05-29 09:41:20 -04:00
Yaroslav Halchenko
d2b1c73b92
CFG: assure actions for all the jails
2013-05-24 14:33:08 -04:00
Yaroslav Halchenko
89e06bba15
BF: blocktype must be defined within [Init] -- adding [Init] section. Close #232
2013-05-24 11:15:46 -04:00
Yaroslav Halchenko
c21b7c3b9e
Merge branch 'master' into 0.9 -- with that also progress into 0.9.0a1
...
* master:
Getting ready for further development
Conflicts:
ChangeLog
fail2ban/version.py
2013-05-13 12:58:53 -04:00
Yaroslav Halchenko
725d666ee6
Getting ready for further development
2013-05-13 12:56:21 -04:00
Yaroslav Halchenko
f5a8a8ac7c
Release 0.8.9
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEABECAAYFAlGRBZ8ACgkQjRFFY3XAJMhqzwCgvUsrv6cSjo1d8YCQUA8Na0Kk
44QAoKk7X2sqFM+wvj2vK3stsHa/80qm
=iBfR
-----END PGP SIGNATURE-----
Merge tag '0.8.9' into 0.9 (quite a bit of conflicts "resolved")
Release 0.8.9
* tag '0.8.9':
BF: add missing files to MANIFEST (I think we shoult not rely on sdist anyways -- 'git tag' tarballs are more thorough ;) )
All the (version) updates for the release of 0.8.9
BF: (travis) relax the test for needed to be presented installed directories -- allow new
BF: (travis) if tests ran under coverage -- there is a traceback parts to report (thus > would be present)
ENH: also print the failing traceback line in case of failure
ENH: include explicit list of new files which should not be there upon "install --root"
ENH: now we know that logging handlers closing was still buggy in 2.6.2
ENH: issue a warning if jail name is longer than 19 symbols (Close #222 )
DOC: inline commends with ';' are in effect only if ';' follows as space
BF: Fix for filterpoll incorrectly checking for jailless state
ENH: strengthen detection of working pyinotify
ENH: use the same python executable for setup.py test
ENH: actually tune up TraceBack to determine "unittest" portions of the stack across all python releases
TST: Some primarily smoke tests for tests utils
TST: cover few more lines in fail2banreader.py
ENH: basic test for setup.py itself (when applicable, should greatly improve coverage ;) )
ENH: consistent operation of formatExceptionInfo + unittest for it
ENH: point to the status of master branch on travis
Conflicts:
ChangeLog
MANIFEST
README.md
fail2ban/version.py -- all of the above obvious version changes
below files primarily needed just a bit of help in resolution
config/jail.conf
fail2ban/server/filterpoll.py
fail2ban/server/server.py
fail2ban/tests/servertestcase.py
and following were more difficult -- git wasn't able to track renames/moves of the code
fail2ban-testcases -- needed to introduce those changes to tests/utils.py
testcases/clientreadertestcase.py -- manually applied patch from master
testcases/utils.py -- manually applied patch from master
2013-05-13 12:29:41 -04:00
Yaroslav Halchenko
a7f41af671
All the (version) updates for the release of 0.8.9
2013-05-13 11:00:44 -04:00
Yaroslav Halchenko
f5dfa610e6
Merge branch 'master' into 0.9 (propagating \r\n fix)
...
* master:
Previous coverage was 56% (without disregarding any pragma)
Changelog for preceeding commit
ENH: strip CR and LF while analyzing the lines (processLine) (Close #202 )
Conflicts:
fail2ban/server/filter.py
2013-05-08 16:37:53 -04:00
Yaroslav Halchenko
0e5f7b5951
Merge branch '_enh/strip_crlf'
...
* _enh/strip_crlf:
Changelog for preceeding commit
ENH: strip CR and LF while analyzing the lines (processLine) (Close #202 )
2013-05-08 16:36:14 -04:00
Yaroslav Halchenko
f4d2b5b338
Previous coverage was 56% (without disregarding any pragma)
2013-05-08 16:12:37 -04:00
Yaroslav Halchenko
f1b6806eb4
Merge branch 'master' into 0.9
...
* master: (51 commits)
ENH: Use real (resolving) example.com instead of test.example.com
DOC: Slight tune ups to ChangeLog -- we must release!
Changelog entries for the latest merges
BF: add bash-completion to MANIFEST
DOC: ChangeLog for default action type change
ENH: consolidate where blocktype is defined for iptables rules
BF: default type to unreachable
ENH: separate out regex and escape a .
ENH: logs/sshd -- have ":" after [daemon] (other uses are uncommon)
ENH: logs/sshd -- use example.com as the resolved hostname in sample log lines
ENH: filter.d/sshd.conf -- allow for trailing "via IP" in logs
DOC: Drop sudo from bash-completion
DOC: Added bash-completion script
ENH: add blocktype to all relevant actions. Also default the rejection to a ICMP reject rather than a drop
ENH: Removed unused log line
ENH: logrotate file
BF: missed MANIFEST include
BF: missed MANIFEST include
BF: missed MANIFEST include
ENH: some form of logrotate based on what distros are doing
...
Conflicts:
ChangeLog
MANIFEST
client/actionreader.py
config/jail.conf
fail2ban/server/datedetector.py
fail2ban/tests/datedetectortestcase.py
2013-05-08 13:53:38 -04:00
Yaroslav Halchenko
239406a8b9
Changelog for preceeding commit
2013-05-08 12:09:06 -04:00
Yaroslav Halchenko
2b1e19933f
Merge branch 'master' of git://github.com/fail2ban/fail2ban
...
* 'master' of git://github.com/fail2ban/fail2ban:
BF: missed MANIFEST include
DOC: credits for bsd-ipfw
ENH: add ipfw rule for bsd using the tables.
2013-05-08 10:32:18 -04:00
Yaroslav Halchenko
976a65bb89
Merge branch 'bsd_logs' of https://github.com/grooverdan/fail2ban
...
* 'bsd_logs' of https://github.com/grooverdan/fail2ban :
ENH: separate out regex and escape a .
BF: missed MANIFEST include
DOC: credits for bsd log
DOC: bsd syslog files thanks to Nick Hilliard
BF: change common.conf to handle formats of syslog -v and syslog -vv in BSD
Conflicts:
config/filter.d/common.conf
2013-05-08 10:30:04 -04:00
Yaroslav Halchenko
5accc10a47
Merge pull request #206 from grooverdan/bsd_ipfw
...
NF: BSD ipfw
2013-05-08 07:24:56 -07:00
Yaroslav Halchenko
0ae49ab11e
Merge branch 'bsd_pf' of https://github.com/grooverdan/fail2ban
...
* 'bsd_pf' of https://github.com/grooverdan/fail2ban :
BF: missed MANIFEST include
DOC: add jail.conf entry for pf
DOC: credit for pf action. Origin: http://svnweb.freebsd.org/ports/head/security/py-fail2ban/files/patch-pf.conf?view=log
ENH: pf action thanks to Nick Hilliard <nick@foobar.org>.
Conflicts:
ChangeLog
2013-05-08 10:24:01 -04:00
Yaroslav Halchenko
e85914cef8
Merge pull request #215 from grooverdan/reject_no_drop_by_default
...
ENH: add blocktype to all relevant actions and change default action to reject
2013-05-08 07:20:14 -07:00
Yaroslav Halchenko
11031d5ec9
DOC: Slight tune ups to ChangeLog -- we must release!
2013-05-08 10:15:18 -04:00
Yaroslav Halchenko
63b9e4f358
Changelog entries for the latest merges
2013-05-08 10:10:04 -04:00
Daniel Black
ac1944ac6d
DOC: ChangeLog for default action type change
2013-05-08 08:21:17 +10:00
Daniel Black
462dafa32f
DOC: credit for pf action. Origin: http://svnweb.freebsd.org/ports/head/security/py-fail2ban/files/patch-pf.conf?view=log
2013-05-03 16:38:30 +10:00
Daniel Black
f402609f19
DOC: credits for bsd-ipfw
2013-05-03 16:32:11 +10:00
Daniel Black
be725ae5c3
DOC: credits for BSD ssh filter changes
2013-05-03 16:19:44 +10:00
Daniel Black
ebfab512bc
DOC: credits for bsd log
2013-05-03 16:15:26 +10:00
Yaroslav Halchenko
617fe6cb02
Slight tune up of changelog entry (treeish change due to squashing)
2013-05-03 01:03:53 -04:00
Yaroslav Halchenko
89adcd7ff7
Merge branch PR #193 ASSP SMTP Proxy support (with some manual squashing)
...
Origin: https://github.com/lenrico/fail2ban
Squashing was done via rebase -i 1524b076d6
to eliminate massive assp sample log file originally added
fixed test date thx to steven
tight control of the filter for ASSP
as yaroslav wishes
as daniel desires
changed from DateASSPlike class to DateStrptime
fixed little things
added new date format support for ASSP SMTP Proxy
2013-05-03 00:57:49 -04:00
Enrico Labedzki
ba8f012637
fixed little things
2013-05-03 00:56:52 -04:00
Enrico Labedzki
24a8d07c20
added new date format support for ASSP SMTP Proxy
2013-05-03 00:56:46 -04:00
Yaroslav Halchenko
93ad298aa8
Changelog entry for timeout option + fixed tabs in previous entry
2013-05-03 00:25:42 -04:00
Yaroslav Halchenko
415aea7e31
Merge branch 'master' into 0.9
...
* master:
Forgotten Changelog entry for "is None" changes
2013-05-03 00:12:55 -04:00
Yaroslav Halchenko
8b7b213e3d
Forgotten Changelog entry for "is None" changes
2013-05-03 00:12:51 -04:00
Yaroslav Halchenko
124223c24d
Merge remote-tracking branch 'gh-yarikoptic/0.9' into 0.9
...
* gh-yarikoptic/0.9:
changelog for new jail.conf
2013-05-03 00:09:52 -04:00
Yaroslav Halchenko
b65205d4ad
Merge branch 'master' into 0.9
...
* master:
ENH: "is None" instead of "== None" + tune ups in headers
BF: log error only if there were missed config files that couldn't be read
DOC: missing cinfo tags are ok. Log error for self referencing definitions
DOC: s/defination/definition/g learn to spell
Changelog entry for the previous commit and some untabify
BF: pyinotify backend should also handle IN_MOVED_TO events
ENH: remove stats of config files and use results of SafeConfigParserWithIncludes.read to facilitate meaningful error messages
DOC: credits for gh-70 fix
BF: ensure dates in email are in the C locale. Thanks iGeorgeX
DOC: ChangeLog for recursive tag substition
ENH: allow recursive tag substitution in action files.
DOC: document <br> tag
DOC: ChangeLog for named-refused entry
ENH: Account for views in named filter. By Romain Riviere in gentoo bug #259458
DOC: release documentation and distributor contacts
DOC: changelog entry for enhanced ssh filter
BF: Rename mentioning of README to README.md (Fixes #187 )
updated README.md to hyperlink, add travis and coversall
Moving README into a markup README.md for github's goodnesses
Conflicts:
DEVELOP
README.md
fail2ban/client/configreader.py
fail2ban/server/datedetector.py
2013-05-02 23:55:26 -04:00
Yaroslav Halchenko
7c409dd24f
Merge branch 'master' of git://github.com/fail2ban/fail2ban
...
* 'master' of git://github.com/fail2ban/fail2ban:
BF: log error only if there were missed config files that couldn't be read
DOC: missing cinfo tags are ok. Log error for self referencing definitions
DOC: s/defination/definition/g learn to spell
ENH: remove stats of config files and use results of SafeConfigParserWithIncludes.read to facilitate meaningful error messages
DOC: ChangeLog for recursive tag substition
ENH: allow recursive tag substitution in action files.
2013-05-02 23:28:18 -04:00
Yaroslav Halchenko
097fe63dcb
Changelog for preceeding actname merge
2013-05-02 22:34:58 -04:00
Yaroslav Halchenko
cb6e47c871
Merge pull request #194 from grooverdan/defination-substitution
...
ENH: Allow recursive tag substitution in action files
2013-04-30 06:47:30 -07:00
Daniel Black
d28f3fa285
DOC: s/defination/definition/g learn to spell
2013-04-30 08:07:21 +10:00
Yaroslav Halchenko
4f59e14616
Changelog entry for the previous commit and some untabify
2013-04-29 14:00:25 -04:00
Daniel Black
f91ad7e878
DOC: credits for gh-70 fix
2013-04-29 14:12:15 +10:00
Daniel Black
e5474e57aa
DOC: ChangeLog for recursive tag substition
2013-04-29 12:38:42 +10:00
Yaroslav Halchenko
7b87afef48
Merge pull request #192 from grooverdan/gentoo-bug-182661
...
Gentoo bug 182661 - named-refused to account for view
2013-04-27 19:22:36 -07:00
Daniel Black
f2f5234076
DOC: ChangeLog for named-refused entry
2013-04-28 11:05:07 +10:00
Daniel Black
a0bb5163df
DOC: changelog entry for enhanced ssh filter
2013-04-28 09:23:41 +10:00
Yaroslav Halchenko
e5261aade6
changelog for new jail.conf
2013-04-24 16:08:54 -04:00
Yaroslav Halchenko
54bae189a3
Beef up changelog for 0.9
2013-04-22 10:10:20 -04:00
Yaroslav Halchenko
698c74d9ed
Merge commit '0.8.8-212-gf6f30f1' into 0.9
...
* commit '0.8.8-212-gf6f30f1': (24 commits)
DOC: tune up formatting (spaces) and prelude for the changelog entry
DOC: more ChangeLog entries all the way back to 0.8.8
DOC: move new actions and filters to New Features in ChangeLog
DOC: tomcat and Guacmole are next release
DOC: credit man page edits
DOC: developers please rebase and use a single commit
DOC: post release ChangeLog entry
DOC: ChangeLog - current HEAD back to ce3ab34
DOC: begining of ChangeLog
DOC: version/date of release
DOC: ChangeLog versions and dates for Releasing
DOC: guidance for pull requests
BF: filter.d/sshd "Did not receive identification string" relates to an exploit so document this in sshd-ddos.conf but leave it out of authentication based blocks in sshd.conf
DOC: a plugin to thanks for the community support
Add After, PIDFile, and change WantedBy to multi-user.target in fail2ban.server
DOC: slight tune ups to README (we are no longer compatible with python 2.3 ;) )
ENH: more openssh fail messages from openssh source code (CVS 20121205)
Add systemd unit file and tmpfiles.d configuration files
BF: do not rely on scripts being under /usr -- might differ eg on Fedora -- rely on import of common.version (Closes gh-112)
RF: move exceptions used by both client and server into common/exceptions.py
...
Conflicts:
ChangeLog
README
2013-04-22 09:55:27 -04:00
Yaroslav Halchenko
274227bdfa
DOC: tune up formatting (spaces) and prelude for the changelog entry
2013-04-20 19:40:56 -04:00
Daniel Black
e5e0118717
DOC: more ChangeLog entries all the way back to 0.8.8
2013-04-18 12:13:26 +10:00
Daniel Black
5413f9b3a1
DOC: move new actions and filters to New Features in ChangeLog
2013-04-18 11:36:37 +10:00
Daniel Black
ed123ea403
DOC: tomcat and Guacmole are next release
2013-04-18 11:34:44 +10:00
Daniel Black
d4b5e8ec30
DOC: credit man page edits
2013-04-18 08:45:20 +10:00
Daniel Black
dc2f42b24d
DOC: ChangeLog - current HEAD back to ce3ab34
2013-04-18 06:57:35 +10:00
Daniel Black
60fa4b5d7c
DOC: begining of ChangeLog
2013-04-18 05:08:45 +10:00
Daniel Black
6b260ab974
DOC: version/date of release
2013-04-18 04:53:17 +10:00
Yaroslav Halchenko
76c08cebe9
DOC: a plugin to thanks for the community support
2013-04-17 11:54:45 -04:00
Yaroslav Halchenko
9a14cf8b7b
Merge branch 'master' into 0.9
...
* master:
DOC: initiated changelog (but not juice left to actually fill it up ;-))
TST: test all valid loglevels in server testcases
TST: Add tag replace and escape test for actions
ENH: Minor change to action for consistency of execStart/Stop
TST: Coverage for coveralls.io should only be run on success
TST: no cover additions to server, primarily daemon creation
DOC: thanks @kwirk for spotting the typos in exception message
FD_CLOEXEC support
Typo in default pidfile in fail2ban.conf
Conflicts:
.travis.yml -- after_success
ChangeLog -- added perspective changelog for 0.8.9
fail2ban/server/asyncserver.py -- imports
fail2ban/server/server.py -- no pragma (if I got it right ;-) )
2013-04-16 23:50:43 -04:00
Yaroslav Halchenko
b8e823bd4e
DOC: initiated changelog (but not juice left to actually fill it up ;-))
2013-04-16 23:44:38 -04:00
Yaroslav Halchenko
4d4c2d7e02
Brief changelog entry for multiline failregex. With this Close gh-54
2013-02-11 16:04:44 -05:00
Yaroslav Halchenko
9dc662af27
Introducing 0.9.x series with 0.9.0a0
...
0.9.0a0 is chosen so that StrictVersion works within python 2.x
2013-02-11 16:00:05 -05:00
Yaroslav Halchenko
51a3be2d79
Getting ready for 0.8.8 release (changelog, version boost)
2012-12-05 22:51:29 -05:00
Yaroslav Halchenko
652b5a77e0
BF: fixing current version string to contain the patch index, i.e. ".1" Thanks Fabian Fischer
2012-10-10 08:39:18 -04:00
Yaroslav Halchenko
0b5c66fb59
Changelog for the fix -- will rerelease 0.8.7.1
2012-07-31 21:45:04 -04:00
Yaroslav Halchenko
c06c504a8e
Adjusted changelog to reflect the last change
2012-07-31 15:54:33 -04:00
Yaroslav Halchenko
2b885e07f4
Adjusted changelog to reflect the last change
2012-07-31 15:52:48 -04:00
Yaroslav Halchenko
a512ea47d2
Adjusted changelog to reflect the last change
2012-07-31 15:33:30 -04:00
Yaroslav Halchenko
99c0caa9cc
Boosted version to 0.8.7 + few more comments
2012-07-31 12:32:25 -04:00
Yaroslav Halchenko
da752aff14
perspective changelog for 0.8.7
...
Conflicts:
ChangeLog
2012-07-30 14:50:43 -04:00
Yaroslav Halchenko
6495942550
DOC: minor (untabify, utf8) for ChangeLog
2012-07-30 13:57:00 -04:00
Yaroslav Halchenko
1efe1bc171
Changelog and version changes for 0.8.6
2011-11-28 22:46:04 -05:00
Yaroslav Halchenko
2da1a55a48
for 0.8.5 release -- changelog + version
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@781 a942ae1a-1317-0410-a47c-b1dcaea8d605
2011-07-29 02:31:01 +00:00
Cyril Jaquier
0bc43bde31
- Release 0.8.4.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@754 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-09-07 19:13:45 +00:00
Cyril Jaquier
6c2ce35f8c
- Oups... Forgot the ChangeLog...
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@753 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-09-01 21:29:13 +00:00
Arturo 'Buanzo' Busleiman
6d1fa0cf1d
Added item about logging subsystem shutdown being moved, to Changelog.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@749 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-08-31 14:42:45 +00:00
Cyril Jaquier
833c5413af
- Added entry for "Ban IP" command.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@746 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-08-30 21:07:37 +00:00
Cyril Jaquier
a354050913
- Added two new filters: lighttpd-fastcgi and php-url-fopen.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@744 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-08-30 14:49:16 +00:00
Arturo 'Buanzo' Busleiman
81e2fe8306
added 'unexpected communication error' fix to ChangeLog. Added formatExceptionInfo to server/asyncserver.py
...
We should move that function to a helpers module.
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@739 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-08-30 13:51:17 +00:00
Cyril Jaquier
53886e91b3
- Use 80 columns.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@732 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-02-09 22:36:11 +00:00
Cyril Jaquier
0cf733e878
- Fixed maxretry/findtime rate. Many thanks to Christos Psonis. Tracker #2019714 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@731 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-02-09 22:08:21 +00:00
Cyril Jaquier
55fd21ec4b
- Made the named-refused regex a bit less restrictive in order to match logs with "view". Thanks to Stephen Gildea.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@730 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-02-09 20:27:35 +00:00
Cyril Jaquier
3155bc8f03
- Use timetuple instead of utctimetuple for ISO 8601. Maybe not a 100% correct fix but seems to work. Tracker #2500276 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@729 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-02-08 19:50:44 +00:00
Cyril Jaquier
abd061bad8
- Changed <HOST> template to be more restrictive. Debian bug #514163 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@728 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-02-08 17:31:24 +00:00
Cyril Jaquier
7fd0300a73
- Added cyrus-imap and sieve filters. Thanks to Jan Wagner. Debian bug #513953 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@727 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-02-03 22:37:46 +00:00
Cyril Jaquier
e16c18d091
- Added NetBSD ipfilter (ipf command) action. Thanks to Ed Ravin. Tracker #2484115 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@724 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-01-27 23:39:38 +00:00
Cyril Jaquier
e46e8ed32e
- Improved SASL filter. Thanks to Loic Pefferkorn. Tracker #2310410 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@723 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-01-27 23:35:46 +00:00
Cyril Jaquier
6b9896c332
- Added CPanel date format. Thanks to David Collins. Tracker #1967610 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@722 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-01-27 23:21:55 +00:00
Cyril Jaquier
756cfcda5f
- Added nagios script. Thanks to Sebastian Mueller.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@721 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-01-27 22:58:29 +00:00
Cyril Jaquier
870f9d9ea7
- Removed begin-line anchor for "standard" timestamp. Fixed Debian bug #500824 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@719 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-01-20 21:48:04 +00:00
Cyril Jaquier
97f48991a2
- Remove socket file on startup is fail2ban crashed. Thanks to Detlef Reichelt.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@718 a942ae1a-1317-0410-a47c-b1dcaea8d605
2009-01-20 21:24:33 +00:00
Cyril Jaquier
6cd56802bb
- Added actions to report abuse to ISP, DShield and myNetWatchman. Thanks to Russell Odom.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@717 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-10-13 14:56:54 +00:00
Cyril Jaquier
bb8e610795
- Added apache-nohome.conf. Thanks to Yaroslav Halchenko.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@715 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-10-13 14:37:25 +00:00
Cyril Jaquier
6ee4843d11
- Try to match the regex even if the line does not contain a valid date/time. Described in Debian #491253 . Thanks to Yaroslav Halchenko.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@712 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-08-12 22:40:07 +00:00
Cyril Jaquier
b26f9ca97a
- Use current day and month instead of Jan 1st if both are not available in the log. Thanks to Andreas Itzchak Rehberg.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@708 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-08-12 20:51:55 +00:00
Cyril Jaquier
155c4652a4
- Merged patches from Debian package. Thanks to Yaroslav Halchenko.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@706 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-07-22 22:29:57 +00:00
Cyril Jaquier
a8f4d3a8b4
- Changed to SVN version.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@705 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-07-22 22:23:52 +00:00
Cyril Jaquier
2ca9261bb3
- Prepared for 0.8.3
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@702 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-07-16 22:10:44 +00:00
Cyril Jaquier
cc62cd7076
- Use poll instead of select in asyncore.loop. This should solve the "Unknown error 514". Thanks to Michael Geiger and Klaus Lehmann.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@700 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-07-14 21:56:07 +00:00
Cyril Jaquier
11c8c71014
- Added missing ignoreregex to filters. Thanks to Klaus Lehmann.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@699 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-05-21 22:17:00 +00:00
Cyril Jaquier
8da2fe515a
- Added and changed some logging level and messages.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@696 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-05-19 21:05:32 +00:00
Cyril Jaquier
298adc4d43
- Added ISO 8601 date/time format.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@692 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-05-18 19:53:18 +00:00
Cyril Jaquier
4bc6a93ce2
- Fixed ignoreregex processing in fail2ban-client. Thanks to René Berber.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@689 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-05-12 08:25:17 +00:00
Cyril Jaquier
46dab37bfe
- Added "Day/Month/Year Hour:Minute:Second" date template. Thanks to Dennis Winter.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@685 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-04-07 22:49:47 +00:00
Cyril Jaquier
a32f04b0cb
- Added gssftpd filter. Thanks to Kevin Zembower.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@683 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-04-07 22:41:19 +00:00
Cyril Jaquier
56357d18df
- Changed some log level.
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@682 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-04-07 22:25:16 +00:00
Cyril Jaquier
b757c08f40
- Fixed "fail2ban-client get <jail> logpath". Bug #1916986 .
...
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@681 a942ae1a-1317-0410-a47c-b1dcaea8d605
2008-03-17 23:18:07 +00:00