Commit Graph

4914 Commits (2912bc640b3335bffe20d03afa74d84c7a3c4f56)
 

Author SHA1 Message Date
sebres b158f83aa3 testIPAddr_CompareDNS: add missing network constraint (gh-2596)
5 years ago
sebres b25d8565fc release 0.10.5 -- Deserve more respect a jedi's weapon must. Hrrrm, Yes
5 years ago
sebres 4e4bd43e5e small amend for d1b7e2b5fb2b389d04845369d7d29db65425dcf2: double usage string removed, spacing fixed
5 years ago
sebres f77398c49d filter.d/sshd.conf: captures `Disconnected from ... [preauth]`, preauth phase only, different handling by `extra` (with supplied user only) and `ddos`/`aggressive` mode (`normal` mode is not affected, used there just as a helper with `<F-NOFAIL>` to capture IP for multiline failures without IP);
5 years ago
sebres d1b7e2b5fb fail2ban-regex - several enhancements and fixes:
5 years ago
sebres dbc6590589 usage of failure-ID tag `<F-ID>...</F-ID>` causes raw handling automatically (avoid DNS-resolve for found ID)
5 years ago
Sergey G. Brester a15832e773
Merge pull request #2588 from sebres/0.10-invariant-improve
5 years ago
sebres f30b7ae244 update ChangeLog + spelling
5 years ago
sebres 17a34b1528 amend with missing parameter of actionreban in actionreader and coverage
5 years ago
sebres f001f8de2a automatic reban (repeat banning action) after repair/restore sane environment, if already logged ticket causes new failures (part of #980, closes #1680);
5 years ago
sebres 1a9bc1905d auto-detection of IPv6 subsystem availability (important for not on-demand actions or jails, like pass2allow)
5 years ago
sebres 125da61bda more cases covered, start in repair distinguish operations, on demand flag etc
5 years ago
sebres b7fe33483a coverage
5 years ago
sebres a527fbcae5 small amend: if not on-demand, the families should be specified (or default), also avoids error "dictionary changed size during iteration"
5 years ago
sebres 67fd75c88e pass2allow-ftp: inverted handling - action should prohibit access per default for any IP, so reset start on demand parameter for this action (will be started immediately).
5 years ago
sebres 165b7d6643 tests fixed, prepared for other conditional operations (for subnet usage), operations like repair/flush/stop considering started families (executed for started only)
5 years ago
sebres 3c42c7b9ef **not ready** testActionsConsistencyCheck fixed, but several **broken** tests (todo: fix public interface like action.start()/stop()).
5 years ago
sebres 31b8d91ba2 **not ready** amend with more tests (some issue on stop?)
5 years ago
sebres 8f6ba15325 avoid unhandled exception during flush, better invariant check (and repair), avoid repair by unban/stop etc...
5 years ago
Sergey G. Brester 690a0050f0
Merge pull request #2567 from Mart124/bitwarden
5 years ago
sebres 7e98073014 amend to f3dbc9dda10e52610e3de26f538b5581fd905505: don't need truncate (if the name with \0 exceeds 16 bytes, the string is silently truncated by prctl).
5 years ago
sebres f3dbc9dda1 set real thread names (used for identification and diagnostic purposes, e. g. top -H, ps -e -T, pstree, etc)
5 years ago
Mart124 e763c657c4
Let's get back to WRN
5 years ago
Mart124 566cbcdde0
Update bitwarden
5 years ago
Mart124 d7b707b09d
Update bitwarden.conf
5 years ago
Mart124 869327e9b1
Update bitwarden.conf
5 years ago
Mart124 79caeaa520
Create bitwarden.conf
5 years ago
Mart124 30e742a849
Update jail.conf
5 years ago
Mart124 ef394b3cf0
Update jail.conf
5 years ago
Mart124 a3df1ab3f0
Create bitwarden
5 years ago
sebres d5144e380e filter: testing proper handling after time-drift or time-jump (DST-hole, NTP time correction backwards, etc), gh-2566
5 years ago
Sergey G. Brester e4c2f303bd
Merge pull request #2550 from CPbN/centreonjail
5 years ago
Sergey G. Brester 596c5cee7e
Merge pull request #2560 from sebres/gh-927-subnet
5 years ago
Sergey G. Brester e86e9b2ee9
Merge branch '0.10' into gh-927-subnet
5 years ago
Sergey G. Brester 9d263edfbb
Merge pull request #2563 from hvanmegen/patch-1
5 years ago
sebres 27e6b0021c ChangeLog update gh-2563
5 years ago
sebres 0e8a8edb5e filter.d/sendmail-*.conf: both filters have same `__prefix_line` now (and same RE for ID, 14-20 chars long, optional) + adjusted test cases (gh-2563)
5 years ago
Henry van Megen a9200c5456 Added logline that fails at IDs with 15 chars (see gh-2563)
5 years ago
Henry van Megen 548e2e0054 sendmail-auth.conf: filter updated for longer mail IDs (up to 20, see gh-2562)
5 years ago
sebres 5cf064a112 monit: accepting both logpath's: monit and monit.log, closes gh-2495
5 years ago
sebres e5d02bc2e9 grouped tags (`<ADDR>`, `<HOST>`, `<SUBNET>`) recognize IP addresses enclosed in square brackets, closes gh-2494
5 years ago
sebres d44607a161 part of #927 - filter enhancement to parse IP sub-nets (IP/CIDR with correct recognition of IP-family),
5 years ago
CPbN 9e699646f8 Add Centreon jail
5 years ago
CPbN 18ba714f97 Add Centreon jail
5 years ago
sebres 5e3fef1631 Merge branch 'amend-gh-2254' into 0.10
5 years ago
sebres 85ec605358 nftables: amend to gh-2254 - implemented shutdown of action (proper clean-up) - at stop it checks now the last set was deleted and removes table completely (if table does not contain any set);
5 years ago
sebres 51af193402 nftables: add options allowing to specify own table (default `f2b-table`) and chain (default `f2b-chain`)
5 years ago
sebres 955d690e56 regrouping expressions with curly braces, added more escapes (better handling in posix shell)
5 years ago
Sergey G. Brester 8b850864cf
amend to #2254: update changelog
5 years ago
Sergey G. Brester 54298fe761
Merge pull request #2254
5 years ago