3494 Commits (0c2eeee8c7fc4b3a26083ef2f04ebde0c96560c6)

 

All Branches   

Search

Author	SHA1	Message	Date
Yaroslav Halchenko	2adf5855ac	Changelog for the recent PR and added Tom to THANKS	9 years ago
Yaroslav Halchenko	3e31145c33	Merge pull request #1331 from whyscream/postfix-multi-instance-support ... Add support for matching postfix multi-instance daemon names by default	9 years ago
sebres	667785b608	mysqld: failregex fixed (accepts different log level, more secure expression now); ... closes #1332	9 years ago
Tom Hendrikx	6c606cf98f	Add support for matching postfix multi-instance daemon names by default	9 years ago
Yaroslav Halchenko	bd822d02a4	DOC: removed Nick from listed as FreeBSD maintainer	9 years ago
Yaroslav Halchenko	8b00ca2744	Merge pull request #1327 from yarikoptic/enh-cov-templates ... ENH: use codecov + templates for PRs and issues	9 years ago
Yaroslav Halchenko	705b91e6a7	DOC: adjusted ISSUE_TEMPLATE.md picking on @sebres's version	9 years ago
Yaroslav Halchenko	9667c4cb42	ENH: github templates for issues and PRs	9 years ago
Yaroslav Halchenko	72638975a9	ENH: add codecov support to travis.yml and bandge to README.md	9 years ago
Jack Suter	fb779a78c5	gentoo-initd: Use start-stop-daemon in order to handle crashes better ... Currently, if fail2ban is killed (or crashes), its status will be reported by '/etc/init.d/fail2ban status' as 'running' even though it is not. Attempting to restart the service also fails, because Gentoo unsuccessfully tries to stop the service. By using start-stop-daemon and providing a pidfile, Gentoo will instead report the status as 'crashed' and allow the service to be restarted as normal.	9 years ago
Yaroslav Halchenko	905c87ca4a	Merge pull request #1310 from yarikoptic/pr-1288 ... NF: HAProxy HTTP Auth filter	9 years ago
Yaroslav Halchenko	3dc57af19c	Merge branch 'logrotate' of https://github.com/sbraz/fail2ban ... * 'logrotate' of https://github.com/sbraz/fail2ban: Remove compression and count from logrotate	9 years ago
Yaroslav Halchenko	09bc2e978d	Merge pull request #1319 from sebres/asterisk-gh1309 ... Asterisk regexp fix to catch phone # and relax trailing anchoring (replacement for Update asterisk.conf gh-1309)	9 years ago
sebres	d8e81eb417	regexp rewritten (few vulnerable as previous) + test case added	9 years ago
3eBoP	257b7049d8	Update asterisk filter: changed regex for "Call from ...". Sometimes extension can have a plus symbol (+) because they can be phone number. ... Closes #1309	9 years ago
Pierre GINDRAUD	b5a07741c8	Add new regex into postfix filter. The new regexp is able to detect bad formatted SMTP EHLO command	9 years ago
Yaroslav Halchenko	b435e1e4c8	Merge pull request #1311 from sbraz/gentoo-init ... gentoo-initd: do not hide useful output	9 years ago
Louis Sautier	869d99dd37	Remove compression and count from logrotate ... Initially reported at https://bugs.gentoo.org/show_bug.cgi?id=549856	9 years ago
Louis Sautier	294a7790a9	gentoo-initd: do not hide useful output ... Gentoo applies a patch for this: https://bugs.gentoo.org/show_bug.cgi?id=536320	9 years ago
Yaroslav Halchenko	3f437b32db	Merge remote-tracking branch 'pr/1288/head' ... * pr/1288/head: Update haproxy-http-auth.conf Added HAProxy HTTP Auth filter Conflicts: config/jail.conf - resolved + removed unnecessary filter/enabled (defaults should be as good)	9 years ago
Yaroslav Halchenko	377ea32441	Merge pull request #1295 from obounaim/master ... The sender option is ignored by some actions	9 years ago
Serg G. Brester	fe14c8fa05	Merge pull request #1292 from albel727/master ... Add nftables actions	9 years ago
Jordan Moeser	d7b46509d8	Update haproxy-http-auth.conf ... Updated failregex to be more strict	9 years ago
local	58a8736e0f	Updating changelog.	9 years ago
local	40c0bed82c	action_mw, action_mwl, action_cf_mwl ignore the "sender" option when sending a notification email. ... This commit adds "sender="%(sender)s"" to the three actions to correct this issue.	9 years ago
Yaroslav Halchenko	5d0d96a5cb	Merge pull request #1286 from yarikoptic/enh-jail ... ENH: harmonize jail.conf + 1 more test that passed bantime is non-degenerate and int	9 years ago
Alexander Belykh	985e8938a4	Refactor nftables actionstop into smaller parts	9 years ago
Alexander Belykh	9779eeb986	Add nftables_type/family/table parameters	9 years ago
Alexander Belykh	260c30535d	Escape curly braces in nftables actions	9 years ago
Alexander Belykh	1983e15580	Add empty line between parameters in nftables-common.conf	9 years ago
Alexander Belykh	cb2d70d7a8	Add ChangeLog entry for new nftables actions	9 years ago
Alexander Belykh	f7f91a8bd4	Refactor common code out of nftables-multiport/allports.conf	9 years ago
sebres	25a09352e4	+ ChangeLog entry	9 years ago
sebres	69f5623f83	code simplifying (remove duplication): agent will be always supplied as parameter from jail.conf	9 years ago
Alexander Belykh	618e97bce8	Add nftables actions	9 years ago
sebres	ac31121432	amend to fix fail2ban-version: correct user-agent for badips.py "Fail2Ban/ver", changeable within jail/config now;	9 years ago
Jordan Moeser	e133762a28	Added HAProxy HTTP Auth filter	9 years ago
sebres	cf334421bd	Provides fail2ban version to jail (as interpolation variable during parse of jail.conf); ... BF: use `fail2ban_agent` as user-agent in actions badips, blocklist_de, etc. (closes #1271, closes #1272)	9 years ago
Yaroslav Halchenko	b76aede40d	ENH(TST): verify that passed bantime is non-0 and int	9 years ago
Yaroslav Halchenko	28c9832293	RF: harmonize jail.conf (no explicit enabled=false in jails, match filter name for screesharingd, etc)	9 years ago
Yaroslav Halchenko	69aa1feac0	Merge "Mac OS Screen Sharing filter" PR 1232 ... * pr/1232/head: removed system.log Removed old svn revision comment removed false matches Removed includes comment for screensharing jail Now using a literal logpath for screensharing jail Fixed blatant typo in regex clarified comments on sample log format Fixed name (again?) Made screensharing jail off by default Changed regex prequel added entry for new screensharingd filter name change & new sample data Added json metadata Sample log for test case Replaced .* with literal Update jail.conf Added new path variable for system.log Added in settings for screensharingd filter Created file Conflicts: ChangeLog - moved to New Features config/jail.conf - kept at the end	9 years ago
Yaroslav Halchenko	16710237e3	Merge remote-tracking branch 'origin/master' ... * origin/master: Add 'Sender address rejected: Domain not found' Postfix failregex	9 years ago
sebres	134c33cc6d	fail2ban-testcases: added option "--ignore": negate [regexps] filter, to ignore tests matched specified regexps	9 years ago
sebres	8eca2ecd84	optimized version of "str2seconds" with pre-compiled regexp;	9 years ago
sebres	da51fbf9c6	code review and performance optimization: ... - default date templates cache + regexp compiling on the fly (if required); - better usage of shared config over all test cases; - obsolete test cases removed (simple test of memleak/gc); - skip some slow test cases in fast mode (setup test, etc.);	9 years ago
sebres	3f2b58e973	datedetector: matchTime, template list etc. rewritten because of performance degradation (without sorting templates now) - in-place reordering using hits and last used time; ... todo: rewrite "reGroupDictStrptime" because may be too slow;	9 years ago
sebres	e065941ac5	use "maxEntries" (currently 50 as default) as range for max number of the last matches/failures, fail2ban will hold per IP in the list of failures in failmanager resp. in the database; ... prevents out of memory situation if many IP's makes extremely many failures (or very large files since last fail2ban run); closes gh-1277 todo: parameter `maxentries` should be configurable (jail.conf resp. fail2ban.conf); todo: adjust ban-time-incr branch by merge (table "bips").	9 years ago
sebres	935d79eaae	1) prevents a bug by logging stdout/stderr if retcode still None: ... ``` in executeCmd if retcode < 0: TypeError: unorderable types: NoneType() < int() ``` 2) prevents a rarely test case bug of testExecuteTimeoutWithNastyChildren, because no stdout (Resource temporarily unavailable), possible no flush by IO of the killing process;	9 years ago
sebres	6406f6f560	background servicing (temporally executed from failmanager): prevents memory leak on some platforms/python versions, using forced GC in periodic intervals (latency and threshold); ... Side effect: GC is disabled now inside fail2ban-server (to avoid multiple garbage collect)	9 years ago
sebres	a10eb39bbe	test cases extended with memory leakage check	9 years ago