fail2ban

Commit Graph

Author	SHA1	Message	Date
sebres	1b4ba602ba	normalize bool conversion, introduced common helper function `_as_bool`	7 years ago
sebres	60b36c4213	rewritten preventive measure to convert "unexpected" type before pickled in CS-protocols: don't convert all basic types now (also bool, int etc). Fixed bug with ignoreself option, which reached fail2ban-server as string 'False' (and not as boolean), so no matter which value was set - it results always in True (see gh-2078).	7 years ago
sebres	e01981cc72	tweak performance a bit (filter.py: inIgnoreIPList: changed default of parameter `log_ignore=True`, mostly used against filter-calls)	7 years ago
sebres	a208b11796	added log message if ignored by `ignoreself` rule (similar to both other rules `ignoreip` and `ignorecommand`), and test covered now;	7 years ago
sebres	4099897be0	test dummy action first	7 years ago
Sergey G. Brester	9f3a80a21a	Update ChangeLog	7 years ago
sebres	bba7a6c5cf	amend to (gh-2067) / b34ae5999e0d8ee1af8939527305c13152844b3d: fix parameter in config (dynamic parameters stating with '_' are protected and don't allowed in command-actions); the interpolation of hostsdeny is test-covered now; closes gh-2114.	7 years ago
sebres	22e9ccb387	amend to 5f021aa648c42ee188d8c31a81937d764982a58a: void throw a socket error on shutdown for already closed connection; closes gh-2109	7 years ago
sebres	8069eef50c	badips: try to fix sporadic test errors if badips-server timed out resp. not available (502 bad gateway or similar).	7 years ago
sebres	414469c102	Merge '0.10.3.fix1' into 0.10	7 years ago
sebres	ac0d441fd6	0.10.3.fix1: version bump	7 years ago
sebres	cb0f4cbb32	test_badips.py: amend to 2ff65f5d3ce1a4bd107cb4dbbd5343f7146a0677: increase timeout in normal mode + catch timeout exceptions to skip the test (avoid sporadic CI errors if badips gets slowly).	7 years ago
sebres	c1923f9644	update ChangeLog	7 years ago
sebres	34b586b51e	fix for JSON serialization bug for set object (gh-2103): currently there are only users, so simply serialized as a list.	7 years ago
sebres	187514eda7	bump version (0.10.3 -> 0.10.4.dev1)	7 years ago
sebres	0a50f2e19e	next release of 0.10: bump version, update ChangeLog, man's and MANIFEST etc.	7 years ago
sebres	5dfba17663	Merge pull request #2064 from mgrant0/0.11 (rebased) Sendmail logs IPv6 addresses with the prefix 'IPv6:'. Changed <HOST> to (?:IPv6:<IP6>\|<IP4>)	7 years ago
sebres	4a8506fcca	update ChangeLog	7 years ago
Michael Grant	57bc502d5c	Update sendmail-reject.conf	7 years ago
Michael Grant	2ab6a5ae62	Update sendmail-auth.conf	7 years ago
Michael Grant	87520e8008	Sendmail logs IPv6 addresses with the prefix 'IPv6:'. Added (IPv6:)? before all <HOST> regexes to match the IPv6 address (but not the prefix).	7 years ago
sebres	2ff65f5d3c	test_badips.py: increase timeout in normal mode (avoid sporadic CI errors if badips gets slowly).	7 years ago
Sergey G. Brester	521de5edfd	Merge pull request #2101 from mercurytoxic/mercurytoxic-patch-1 Fixes abuseipdb curl cypher error and comment $f2bV_matches	7 years ago
Sergey G. Brester	d9525ad3aa	Update ChangeLog	7 years ago
Luis Aranguren	fc76ccf192	Fixes abuseipdb curl cypher error and comment $f2bV_matches Fixed https://github.com/fail2ban/fail2ban/issues/2044 #2044 and used https://github.com/fail2ban/fail2ban/issues/2039 to fix comment in abuseipdb.com only showing $f2bV_matches	7 years ago
Sergey G. Brester	7bbc26d67e	Merge pull request #2097 from benrubson/sni Detect Apache SNI error / misredirect attempts	7 years ago
Sergey G. Brester	28ae32f0ca	Update ChangeLog	7 years ago
sebres	02bae2962d	fixed test cases: www.epfl.ch seems to change again the static IP address, tests rewritten using dynamic mechanism (via resolver).	7 years ago
benrubson	bd74f7ba8b	Detect Apache SNI error / misredirect attempts, typos	7 years ago
sebres	e786dbf132	New logging parameter `padding`, default enabled, excepting the SYSLOG (for backwards compatibility purposes); Closes gh-2099.	7 years ago
sebres	8423f017e7	Merge branch 'sshd-ddos-mode-closed-preauth' into 0.10	7 years ago
Sergey G. Brester	4ee7af742a	Merge pull request #2090 from sebres/fix-sshd-filter-suff sshd, multi-line failures, alternate groups capture, etc.	7 years ago
sebres	4ee07adde6	Merge branch '0.10' into fix-sshd-filter-suff # Conflicts resolved: # fail2ban/server/filter.py	7 years ago
sebres	50d7c649ba	Skip several test-cases of systemd backend, if journal seems to be not available (e. g. no rights to read journal); Closes gh-2100	7 years ago
sebres	fd0471927d	badips: increase age for /list/cat in the test-cases (default 24h is too short, so the tests can sporadic fail)	7 years ago
sebres	4963295729	Merge remote-tracking branch 'remotes/gh-upstream/master' into 0.10	7 years ago
benrubson	30dc22fb2e	Detect Apache SNI error / misredirect attempts	7 years ago
Sergey G. Brester	088192ea9f	Merge pull request #1960 from comradekingu/patch-1 https, "Fail2Ban", other language improvements	7 years ago
Sergey G. Brester	9710c8c996	minor fix with reindent	7 years ago
sebres	218905c924	performance optimization: findFailure, search regex etc, handling with buffer/tuple-lines optimized (especially multi-regex resp. multi-lines filters)	7 years ago
Sergey G. Brester	67df796f93	Merge pull request #2088 from sebres/fix-gh-2073 filter.d/apache-noscript.conf: extended to match "Primary script unknown", got from php-fpm module	7 years ago
sebres	79019967a7	datepattern: fix epoch/long-epoch name, if custom pattern specified	7 years ago
Sergey G. Brester	6dc9c23a25	fixed typo in pragma-comment	7 years ago
Sergey G. Brester	80725ae870	Update sshd comment/minimalistic: no functional change	7 years ago
sebres	e5735b9951	ChangeLog updated	7 years ago
sebres	4f6532f810	filter.d/sshd.conf: mode `ddos` (and `aggressive`) extended to catch `Connection closed by ... [preauth]`, so in DDOS mode it causes failure now on closed within preauth stage; at least using both modes can ban port-scanners and prevent for other annoying "intruders", closing connection within preauth-stage (see gh-2085 for example).	7 years ago
sebres	cd7f1354c6	remove end-anchors for expressions that are precise enough (with clear flow, simple branches, without catch-all's, etc.)	7 years ago
sebres	ed7d5d8ea1	ChangeLog updated	7 years ago
sebres	c31eb1c562	quick optimization: normalizes pam-generic prefregex (more similar to the same regex within sshd-filter) + datepattern anchored now;	7 years ago
sebres	4129f940bb	revert non-empty incremental multi-line failure merge (just simply overwrite method used ATM); revert sshd test case (better to use last given failure-id, so ipv6 instead ipv4, e. g. because of some wrong multi-line-id recognition); improved output on AssertionError in samples-testcase factory.	7 years ago

1 2 3 4 5 ...

4548 Commits (1b4ba602bac38a067b5abb9a941feab53c36c915) All Branches Search

4548 Commits (1b4ba602bac38a067b5abb9a941feab53c36c915)

All Branches