github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
5,530 Commits
34 Branches
229 Tags
21 MiB
Commit Graph

5530 Commits (1434e3089cb93649e02f598ab557eb31731936e6)

Author SHA1 Message Date
Sergey G. Brester 1434e3089c
Merge pull request #2455 from Thermi/improved-action-blocklist-de 
Improved blocklist_de action to not resend bans that were already reported
 2024-04-28 21:12:49 +02:00
sebres 94dac78afe Merge branch '0.10' into 0.11 
(conflicts resolved)
 2022-09-16 19:14:50 +02:00
sebres 485c50228a explicitly close cursor if not needed anymore (GC can grab it late) 2022-09-16 18:34:47 +02:00
sebres 45ef36276f fixes gh-3352: failed update of database didn't signal with an error 
* client and server exit with error code by failure during start process (in foreground mode)
  * added fallback to repair if database cannot be upgraded
code review and unify (more homogeneous by client and server now)
 2022-09-16 17:58:24 +02:00
sebres 8dccf099e4 Merge branch '0.10' into 0.11 
(conflicts resolved)
 2022-09-08 16:32:34 +02:00
sebres 5e74499ffd provides details of failed regex compilation in the error message we throw in Regex-constructor (it's good to know what exactly is wrong) 2022-09-08 16:04:46 +02:00
sebres 467024797f Merge branch '0.10' into 0.11 2022-08-17 16:56:10 +02:00
sebres 35eb9acaee Merge branch 'test-gh-3334' into 0.10 - speedup daemonization process by huge open files limit 
Closes #3334
 2022-08-17 16:51:36 +02:00
sebres 476136281c Revert "check large nofile limit issue (#3334)" (back to original open files limit) 
This reverts commit 24b1dea197.
 2022-08-17 16:04:10 +02:00
sebres 38026e5963 code review (replace deprecated setter, since python 3.10) 2022-08-17 16:01:04 +02:00
sebres 535a982dcc fixes #3334: speedup daemonization process by huge open files limit (try to close open file descriptors obtained from `/proc/self/fd` or `/proc/fd`) 2022-08-17 15:07:30 +02:00
Sergey G. Brester 24b1dea197 check large nofile limit issue (#3334) 2022-08-17 13:10:02 +02:00
Sergey G. Brester bcac47d549
Merge pull request #3324 from fail2ban/patch-sendmail-no-user-part 
filter.d/sendmail-auth.conf: detect failures without user part
 2022-08-01 09:40:12 +02:00
Sergey G. Brester 514cca9ade
filter.d/sendmail-auth.conf: detect failures without user part 2022-08-01 09:20:28 +02:00
Sergey G. Brester 3a8ab0c70a
sendmail-auth: coverage for auth-failure without user part 
https://github.com/fail2ban/fail2ban/issues/2757#issuecomment-1199948639
 2022-08-01 09:17:53 +02:00
sebres c6cfd761bb Merge remote-tracking branch 'remotes/gh-upstream/0.10' into 0.11 2022-06-21 17:16:03 +02:00
Sergey G. Brester 7ba8f437f1
Merge pull request #3267 from fail2ban/py-3.11-a7 
support python 3.11 version
 2022-06-21 17:14:26 +02:00
sebres 5d9d86e2f4 GHA: update python 3.11 version (3.11.0-beta.3) 2022-06-21 17:10:48 +02:00
sebres 15f5c36a17 skip test if readline module missing (add it as optional module installs in GHA workflow) 2022-06-21 17:05:39 +02:00
sebres 4337e36616 wrap global flags like ((?i)xxx) or (?:(?i)xxx) to local flags (?i:xxx) if supported by RE-engine in the python version 2022-06-21 16:56:57 +02:00
sebres 7e2ab36d86 move global groups to start of expression (python 3.11 compat) 2022-06-21 16:55:57 +02:00
Sergey G. Brester 500895dcfa GHA: update python 3.11 version 2022-06-21 15:34:58 +02:00
Sergey G. Brester a7ade07bf4
fixes typo (copy&paste) by logging of flush impossibility at consistency check, #3306 2022-06-19 23:06:42 +02:00
sebres a69d42cea5 Merge branch '0.10' into 0.11 2022-06-02 21:04:43 +02:00
sebres 5aeb49a620 systemd backend: fixes missing space in message (tag `<matches>`) between timestamp and host if the message read from systemd journal; 
closes gh-3293
 2022-06-02 21:01:44 +02:00
Sergey G. Brester fbfc85d8c0
common.conf: fixed typo in comment (rfc5424 for logtype) 
no functional changes; closes #3274
 2022-05-12 18:09:09 +02:00
sebres 8c4d02403b Merge branch '0.10' into 0.11 2022-03-03 15:15:43 +01:00
sebres e2d50f38a6 amend to #2279: ensure that `<F-MLFGAINED>` match would reset all pending multi-line failures 2022-03-03 15:04:34 +01:00
sebres 7eac4ac06f fail2ban-regex: accepts filter parameters with new-line 2022-03-03 14:46:16 +01:00
sebres 8ac49b5858 Merge branch '0.10' into 0.11 2022-02-09 15:44:35 +01:00
László Károlyi f380d6202d cherry pick #3210 from master 2022-02-09 15:43:21 +01:00
sebres cdb6a46945 systemd backend: better avoidance of landing in dead space by seeks over journals; 
increase verbosity and stability of few systemd tests (fixes sporadic timing issues);
seekToTime doesn't need to convert float to datetime, because seek_realtime accepts it as unix time (we need to convert integers only, since it means microseconds and deprecated);
 2022-02-09 14:47:40 +01:00
sebres 498e473a10 filter.d/courier-auth.conf: consider optional port after IP, regex is rewritten without catch-all's and right anchor, so it is more stable against further modifications now; 
closes #3211
 2022-02-09 12:18:23 +01:00
sebres 8013cf0b90 python actions have no attribute 'consistencyCheck' by default; 
closes gh-3214
 2022-02-08 19:57:40 +01:00
sebres 810386a265 filter.d/dovecot.conf: parse everything in parenthesis by auth-worker info, e. g. can match (pid=...,uid=...) too 
(amend to 92f90038fa)
 2022-02-08 19:21:37 +01:00
sebres c7ae74ce17 amend to a147a8b0e1b2f32b6f191932afd3c2db9765e2e3: systemd journal test-cases - additional check appropriate default settings (if testing as not root/sudoer) 2022-02-08 19:10:22 +01:00
sebres 35d73d9758 Merge branch '0.10' into 0.11 2022-01-18 16:17:07 +01:00
sebres bf689c27b8 filter.d/sshd.conf: `ddos` mode extended - recognizes messages "kex_exchange_identification: Connection closed / reset by pear" (fixed possible regression of f77398c49d); 
closes gh-3086
 2022-01-18 15:42:35 +01:00
sebres 8bf15db688 filter.d/sshd.conf: `ddos` mode extended - recognizes new message "banner exchange: invalid format" generated by port scanner, https payload on ssh port; 
closes gh-3169
 2022-01-18 15:41:27 +01:00
Sergey G. Brester ea7bbb4757
Merge pull request #2182 from orlitzky/openrc-improvements 
OpenRC service script improvements
 2022-01-10 14:39:11 +01:00
Sergey G. Brester 8f83242c25
suppress unneeded info (moved to debug level) 
see #3186
 2021-12-20 15:39:57 +01:00
sebres 3fb02527a4 Merge branch '0.10' into 0.11 2021-12-02 18:52:13 +01:00
sebres 25a61ce632 Merge branch 'gh-actions--test-systemd' into 0.10 + several revisions cherry-picked from 0.11/master 2021-12-02 18:48:59 +01:00
sebres 21d94ff178 amend to fix gh-3098: no option `--disable-2to3` anymore 2021-12-02 18:44:24 +01:00
sebres 196c55e931 fix gh-3098: build fails with error in fail2ban setup command: use_2to3 is invalid (setuptools 58+) 2021-12-02 18:44:22 +01:00
sebres 0fa76ef75a gh-actions: temporary ignore tests of systemd backend for python >= v.3.10 (otherwise it fails with "PY_SSIZE_T_CLEAN macro must be defined for '#' formats") 2021-12-02 18:33:10 +01:00
sebres a147a8b0e1 gh-actions: coverage for systemd backend (to monitor journals in test-suite in GHA-env we need to use 0 as default flags, because otherwise it cannot be found using SYSTEM_ONLY(4)) 2021-12-02 18:33:08 +01:00
sebres 1bcb62e31c gh-actions: python releases upgrade + debug/test systemd backend availability in GHA 2021-12-02 18:33:05 +01:00
sebres a57643404c mytime.seconds2str: small amend with speed-up, code simplification and few tests 2021-11-04 14:34:04 +01:00
sebres 4fe4ac8dde amend to merge: replace timedelta string representation with new function seconds2str 2021-11-03 15:58:57 +01:00