3240 Commits (2696ede2514261c67123b1e3ba74b6f73b628369)

 

All Branches   

Search

Author	SHA1	Message	Date
sebres	2696ede251	mysqld-auth: Updated "Access denied ..." regex for MySQL 5.6 and later ... closes gh-1211	9 years ago
sebres	61ac481703	IpToName test case fixed ('66.249.66.1' resp. 'crawl-66-249-66-1.googlebot.com' seems to be unresolvable)	9 years ago
Serg G. Brester	68db52474d	Merge pull request #1206 from kevinoid/ssh-match-auth-fail ... ssh.conf: Fix disconnect "Auth fail" matching	9 years ago
Kevin Locke	2a5c93cfb5	Update ChangeLog and THANKS for "Auth fail" changes ... Document the changes from 36919d9f in the ChangeLog and add myself to the THANKS file (at @sebres suggestion). Signed-off-by: Kevin Locke <kevin@kevinlocke.name>	9 years ago
Kevin Locke	42b0e9258d	Test cases for ssh.conf disconnect "Auth fail" ... Add test coverage for the new disconnect "Auth fail" matching added in 36919d9f. Signed-off-by: Kevin Locke <kevin@kevinlocke.name>	9 years ago
Kevin Locke	36919d9f97	ssh.conf: Fix disconnect "Auth fail" matching ... The regex for matching against "Auth fail" disconnect log message does not match against current versions of ssh. OpenSSH 5.9 introduced privilege separation of the pre-auth process, which included [logging through monitor.c](http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.c.diff?r1=1.113&r2=1.114) which adds " [preauth]" to the end of each message and causes the log level to be prepended to each message. It also fails to match against clients which send a disconnect message with a description that is either empty or includes a space, since this is the content in the log message after the disconnect code, per [packet.c:1785](http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/packet.c?annotate=1.215), which was matched by \S+. Although I have not observed this yet, I couldn't find anything which would preclude it in [RFC 4253](https://tools.ietf.org/html/rfc4253#section-11.1) and since the message is attacker-controlled it provides a way to avoid getting banned. This commit fixes both issues. Signed-off-by: Kevin Locke <kevin@kevinlocke.name>	9 years ago
Yaroslav Halchenko	8311bad4ea	Merge pull request #1204 from szepeviktor/patch-8 ... Added CloudFlare API error codes URL	9 years ago
Viktor Szépe	0d8968daa9	Added CloudFlare API error codes URL	9 years ago
Yaroslav Halchenko	7f3b31aa37	Merge pull request #1198 from yarikoptic/enh-split-comma ... ENH: allow to split ignoreip by space and/or comma (Closes #1197)	9 years ago
Yaroslav Halchenko	ff06176e9e	Merge remote-tracking branch 'origin/master' into enh-split-comma ... * origin/master: DOC: changelog for the timeout change Set Timeout at urlopen to 3 seconds README :: init/service example mentions debian based systems as the example README :: fitted paragraph style BF: disable testing on python 3.2 until coverage gets a fix README :: Some style/grammar tweaks, and init/service script mention. Re: #1193 Set Timeout at urlopen to 3 seconds	9 years ago
Yaroslav Halchenko	4c48e994eb	Merge pull request #1201 from yoosefi/master ... README :: Some style/grammar tweaks, and init/service script mention.…	9 years ago
Yaroslav Halchenko	6c0f898ec7	DOC: changelog for the timeout change	9 years ago
Yaroslav Halchenko	166e99d2ba	Merge pull request #1203 from maxbeth/master ... Add a timeout (3 sec) to urlopen within badips.py action	9 years ago
M. Maraun	ebfd223320	Merge branch 'master' of github.com:maxbeth/fail2ban	9 years ago
M. Maraun	2895d981fa	Set Timeout at urlopen to 3 seconds	9 years ago
Ryan Yoosefi	0610791ffe	README :: init/service example mentions debian based systems as the example	9 years ago
Ryan Yoosefi	c1b80a5e1b	README :: fitted paragraph style	9 years ago
Yaroslav Halchenko	d618ee3d90	BF: disable testing on python 3.2 until coverage gets a fix	9 years ago
Ryan Yoosefi	4744e16539	README :: Some style/grammar tweaks, and init/service script mention. Re: #1193	9 years ago
Yaroslav Halchenko	8cf614e221	ENH: allow to split ignoreip by space and/or comma (Closes #1197) ... Way too many people ran into this gotcha, so lets just do it	9 years ago
Yaroslav Halchenko	24f875ad3e	Merge pull request #1196 from yarikoptic/bf-longer-margin ... BF: relax 1 sec delay testing to 100ms margin (Closes #1195)	9 years ago
Yaroslav Halchenko	84afcd8b1f	BF(PY26): no assertGreater in 2.6 -- use explicit comparison	9 years ago
Yaroslav Halchenko	17a4289798	BF: relax 1 sec delay testing to 100ms margin (Closes #1195)	9 years ago
Yaroslav Halchenko	55e542b273	Merge remote-tracking branch 'pr/1170/head' -- opensuse paths ... * pr/1170/head: Updated ChangeLog regarding openSUSE's path config Added configuration for opensuse path	9 years ago
Yaroslav Halchenko	82e528d1dd	Merge pull request #1191 from yarikoptic/enh-year-after-day ... ENH: new date pattern with year after day (not after entire entry)	9 years ago
Yaroslav Halchenko	db1a3f17e1	ENH: new date pattern with year after day (not after entire entry)	9 years ago
Yaroslav Halchenko	41edfe8caf	Merge pull request #1188 from yarikoptic/rf-assertLogged ... RF(TST): self.assertTrue(self._is_logged()) -> self.assertLogged	9 years ago
Yaroslav Halchenko	d0e6644acd	Merge branch 'rf-assertLogged' ... * rf-assertLogged: RF/BF: py26 has no {} sets, so just pass multiple entries as *args RF(TST): self.assertTrue(self._is_logged()) -> self.assertLogged	9 years ago
Yaroslav Halchenko	d60c52b84f	Merge pull request #1187 from yarikoptic/bf-nasty-children-tests ... BF+RF: executeCmd should only return bool status on success and not throw exceptions (when timedout/killed) (Closes #1155)	9 years ago
Yaroslav Halchenko	fbdd0b74a1	DOC: Changelog entry for this fix	9 years ago
Yaroslav Halchenko	c2c4c40805	Merge remote-tracking branch 'origin/master' into bf-nasty-children-tests ... * origin/master: Comment spelling fixes logrotate: Do not rotate empty logs logrotate: Remove outdated Fedora comment Updated Changelog Bugfix for dnsToIp resolver for fqdn with large list of IPs; closes #1164 Added apache-badbots.conf Update gen_badbots Update apache-badbots.conf changelog for freshly merged PR (roundcube-auth definition of logpath) Fixed line suspected to be faulty renamed <NAME> to correct <ACT> in protocol Conflicts: fail2ban/tests/actiontestcase.py -- due to comments fix up	9 years ago
Yaroslav Halchenko	bfa286b8e4	Merge pull request #1189 from scop/logrotate ... Logrotate tweaks	9 years ago
Yaroslav Halchenko	cafc77d7db	Merge pull request #1190 from scop/spelling ... Comment spelling fixes	9 years ago
Ville Skyttä	943efdb1a0	Comment spelling fixes	9 years ago
Ville Skyttä	67a94733a9	logrotate: Do not rotate empty logs ... As a useful side effect, prevents "Unable to contact server. Is it running?" mails from cron when fail2ban hasn't been (intentionally) running nor thus logging anything either.	9 years ago
Ville Skyttä	63c7ceb81d	logrotate: Remove outdated Fedora comment	9 years ago
Yaroslav Halchenko	8a4dcafc8f	RF/BF: py26 has no {} sets, so just pass multiple entries as *args	9 years ago
Yaroslav Halchenko	5ed731d3b3	RF(TST): self.assertTrue(self._is_logged()) -> self.assertLogged ... and corresponding one for not + support for multiple entries at once, and failure message listing actual log to ease troubleshooting	9 years ago
Yaroslav Halchenko	7cbb3980eb	BF+RF: only return bool status on failed commands execution + mitigate different exit codes between bash/dash ... Closes #1155	9 years ago
Yaroslav Halchenko	85b298e49c	RF: try/except/finally in a single statement (while at it) ... since we support now python >= 2.6	9 years ago
Yaroslav Halchenko	5b655639ab	Merge pull request #1186 from EdwardBeckett/master ... Updated Changelog	9 years ago
Edward Beckett	f5b88bd377	Updated Changelog	9 years ago
Yaroslav Halchenko	4a53629004	Merge pull request #1184 from fail2ban/gh-1164-fix ... Bugfix for dnsToIp resolver for fqdn with large list of IPs;	9 years ago
sebres	4cf3b576b9	Bugfix for dnsToIp resolver for fqdn with large list of IPs; ... closes #1164	9 years ago
Yaroslav Halchenko	818be64ae1	Merge pull request #1180 from EdwardBeckett/master ... Update apache-badbots.conf	9 years ago
Edward Beckett	4bd7991573	Added apache-badbots.conf	9 years ago
Edward Beckett	03460d5ed0	Update gen_badbots ... Added plus char to the regex for escaping user-agent strings.	9 years ago
Edward Beckett	835b3ff483	Update apache-badbots.conf ... Useragent strings including `+http` need to be escaped to be valid.	9 years ago
weberho	2d69fd20ae	Updated ChangeLog regarding openSUSE's path config	9 years ago
weberho	f7af93a677	Added configuration for opensuse path	9 years ago