fail2ban

Commit Graph

Author	SHA1	Message	Date
sebres	f359ed8c36	Fixed directly defined banaction for allports jails like pam-generic, recidive, etc with new default variable `banaction_allports` (+ man entries for both variables added); closes gh-1216	9 years ago
sebres	6884593ab8	New filter `nginx-limit-req` ban hosts, that were failed through nginx by limit request processing rate (ngx_http_limit_req_module)	9 years ago
Orion Poplawski	0661aece46	Merge branch 'master' into journaldefault Conflicts: ChangeLog	9 years ago
Simon Brown	3dd1c305ce	added entry for new screensharingd filter	9 years ago
sebres	eb87638ead	ChangeLog entry for OpenHAB home automation filter (gh-1223)	9 years ago
Pablo Rodriguez Fernandez	2c576c64f8	Change domain filter regex Change domain filter regex since there are other Google crawlers. See "Google crawlers" <https://support.google.com/webmasters/answer/1061943?hl=en>	9 years ago
Orion Poplawski	81a26266a9	Add changlog entry for postfix-rbl logpath change	9 years ago
Orion Poplawski	75d33c0f09	Add *_backend options for services to allow distros to set the default backend per service. Set default to systemd for Fedora as appropriate.	9 years ago
Pablo Rodriguez Fernandez	a28e6b442e	Add check in apache-fakegooglebot to protect against PTR fake record An attacker may return a PTR record which fakes a Googlebot's domain name. This modification resolves the PTR records to verify it. See "Verifying Googlebot": <https://support.google.com/webmasters/answer/80553?vid=1-635800030504666679-1963774919>	9 years ago
sebres	2696ede251	mysqld-auth: Updated "Access denied ..." regex for MySQL 5.6 and later closes gh-1211	9 years ago
Kevin Locke	2a5c93cfb5	Update ChangeLog and THANKS for "Auth fail" changes Document the changes from `36919d9f` in the ChangeLog and add myself to the THANKS file (at @sebres suggestion). Signed-off-by: Kevin Locke <kevin@kevinlocke.name>	9 years ago
Yaroslav Halchenko	ff06176e9e	Merge remote-tracking branch 'origin/master' into enh-split-comma * origin/master: DOC: changelog for the timeout change Set Timeout at urlopen to 3 seconds README :: init/service example mentions debian based systems as the example README :: fitted paragraph style BF: disable testing on python 3.2 until coverage gets a fix README :: Some style/grammar tweaks, and init/service script mention. Re: #1193 Set Timeout at urlopen to 3 seconds	9 years ago
Yaroslav Halchenko	6c0f898ec7	DOC: changelog for the timeout change	9 years ago
Yaroslav Halchenko	8cf614e221	ENH: allow to split ignoreip by space and/or comma (Closes #1197 ) Way too many people ran into this gotcha, so lets just do it	9 years ago
Yaroslav Halchenko	55e542b273	Merge remote-tracking branch 'pr/1170/head' -- opensuse paths * pr/1170/head: Updated ChangeLog regarding openSUSE's path config Added configuration for opensuse path	9 years ago
Yaroslav Halchenko	db1a3f17e1	ENH: new date pattern with year after day (not after entire entry)	9 years ago
Yaroslav Halchenko	fbdd0b74a1	DOC: Changelog entry for this fix	9 years ago
Ville Skyttä	67a94733a9	logrotate: Do not rotate empty logs As a useful side effect, prevents "Unable to contact server. Is it running?" mails from cron when fail2ban hasn't been (intentionally) running nor thus logging anything either.	9 years ago
Edward Beckett	f5b88bd377	Updated Changelog	9 years ago
sebres	4cf3b576b9	Bugfix for dnsToIp resolver for fqdn with large list of IPs; closes #1164	9 years ago
Edward Beckett	4bd7991573	Added apache-badbots.conf	9 years ago
weberho	2d69fd20ae	Updated ChangeLog regarding openSUSE's path config	9 years ago
Yaroslav Halchenko	60fbf7d750	changelog for freshly merged PR (roundcube-auth definition of logpath)	9 years ago
Yaroslav Halchenko	9ebf01293b	Post release tune ups	9 years ago
Yaroslav Halchenko	70ba5cb005	Release changes (too much of manual "labor"! ;))	9 years ago
Yaroslav Halchenko	776322cea3	BF: realpath for /var/run/fail2ban Closes #1142	9 years ago
Yaroslav Halchenko	c37009aec7	Merge branch 'grep-m1k' of github.com:szepeviktor/fail2ban * 'grep-m1k' of github.com:szepeviktor/fail2ban: Limit the number of log lines in *-lines.conf actions Conflicts: ChangeLog -- took both versions and adjusted the new one for -n 1000 change	9 years ago
Yaroslav Halchenko	a80820e356	Changelog entry for killpg fix	9 years ago
Yaroslav Halchenko	38c320798d	Merge pull request #1127 from yarikoptic/enh-iptables-w-close-1122 WIP ENH Add <lockingopt> (Close: #1122) and <iptables> to define the iptables call	9 years ago
Yaroslav Halchenko	de69855157	Changelog entries for Serge's fixes	9 years ago
Yaroslav Halchenko	0041bc3770	DOC: Changelog for shorewall-ipset-proto6.conf + adjusted its description	9 years ago
Yaroslav Halchenko	65cd218e10	Merge remote-tracking branch 'origin/master' * origin/master: ipjailmatches is on one line with its description in man jail.conf Added a space between IP address and the following colon	9 years ago
Yaroslav Halchenko	333dd842f9	DOC: moved and adjusted changelog entry from 0.9.2 within 0.9.3 to come	9 years ago
Viktor Szépe	c8b3ee10a0	Limit the number of log lines in *-lines.conf actions	9 years ago
Yaroslav Halchenko	33b204a2ee	DOC: Changelog for iptables -w change	9 years ago
Thomas Mayer	a19cb1b2b9	Merge `923d807ef8` into `cf2feea987`	9 years ago
Viktor Szépe	ebdfbae559	Added a space between IP address and the following colon	9 years ago
Viktor Szépe	586703dcc2	Test, changelog and fixes to pass2allow	10 years ago
Viktor Szépe	5d60700c0c	Added pass2allow (knocking with fail2ban)	10 years ago
sebres	95c2a2976f	unbanip always deletes ip from database (independent of bantime, also if currently not banned or persistent); merged from #716 where it works; closes gh-972, closes gh-768	10 years ago
Lee Clemens	fc2b7f8012	Multiple Travis and coverage related changes Reorganize .travis.yml Separate coverage tests for Python 2 and Python 3 Execute setup.py install using the environment's Python exe Sanitize Travis execution order	10 years ago
Yaroslav Halchenko	c213d97d25	Moved recently added Changelog (on HEAD addition) to Enhancements	10 years ago
Viktor Szépe	a3b8257b73	Add HEAD method verb to apache-badbots, nginx-badbots	10 years ago
Yaroslav Halchenko	052418a110	Merge pull request #1098 from yarikoptic/enh/man-testcases DOC: rudimentary manpage for fail2ban-testcases (+updated other mans for consistency)	10 years ago
sebres	4a4fe7d76a	extending test cases (increase coverage) + changelog entry for #1099	10 years ago
Yaroslav Halchenko	46510948a7	DOC: rudimentary manpage for fail2ban-testcases (+updated other mans for consistency)	10 years ago
Yaroslav Halchenko	38f8e1a82a	DOC: added changelog for LC_ALL fix, tuned up other ChangeLog entries	10 years ago
Yaroslav Halchenko	e38b4b8cb3	Merge pull request #1051 from leeclemens/bf/roundcube Update regex to work with roundcube 1.0.5 and 1.1.1	10 years ago
Lee Clemens	423d5b761e	Add changelog reference for socket error logging message	10 years ago
Lee Clemens	f7444f16b8	Add optional session id prefix for roundcube 1.1.1	10 years ago
Lee Clemens	2796534a5d	Update regex to work with roundcube 1.0.5 on CentOS 6	10 years ago
Yaroslav Halchenko	e9e00d7599	DOC: ChangeLog -- a better description for cloudflare changes	10 years ago
Viktor Szépe	a00ee15c06	Added Changelog entry	10 years ago
sebres	f2d0230a67	reload in interactive mode appends all the jails twice (#825 )	10 years ago
sebres	2f283079f8	reload server/jail failed if database used (but was not changed) and some jail active (#1072 )	10 years ago
Yaroslav Halchenko	345820d2aa	Merge pull request #1056 from ipoddubny/asterisk_security_log Fix support for Asterisk security log	10 years ago
Yaroslav Halchenko	eb091d9b8c	Merge remote-tracking branch 'origin/master' into pr-1039 * origin/master: minor: no tripple empty lines add froxlor-auth filter and jail add froxlor-auth filter and jail 0 add froxlor-auth filter and jail BF: Fix fail2ban-regex not parsing journalmatch correctly	10 years ago
Joern Muehlencord	4296d1a9a9	add froxlor-auth filter and jail	10 years ago
Ivan Poddubny	38d9f3e609	Asterisk security log: add tests and update ChangeLog	10 years ago
Steven Hiscocks	0c869910ea	BF: Fix fail2ban-regex not parsing journalmatch correctly	10 years ago
Anton Shestakov	56e5821c06	Match unknown user in dovecot's passwd-file auth database	10 years ago
Yaroslav Halchenko	fb336276d4	post-release tune ups Conflicts: ChangeLog README.md	10 years ago
Yaroslav Halchenko	acc4c2d104	Hope for release tomorrow	10 years ago
Yaroslav Halchenko	840fea9f71	Merge commit '0f75ed5e2ab1159e45a7771a7a4e90c877ec848e' * commit '0f75ed5e2ab1159e45a7771a7a4e90c877ec848e': Just use a system wide python in the tests digest.py DOC: Slight tune up to RELEASE doc -- no need for PYTHONPATH to run tests MANIFEST: updated for some new files, sorted all entries, removed some duplicates Initial changes for the release -- simplified ChangeLog header etc	10 years ago
Aaron Brice	7ae0ef2408	Fix actions in ufw.conf On Ubuntu 15.04 the ufw action was not working. - With empty <application>, receiving errors: 2015-04-24 16:28:35,204 fail2ban.filter [8527]: INFO [sshd] Found 43.255.190.157 2015-04-24 16:28:35,695 fail2ban.actions [8527]: NOTICE [sshd] Ban 43.255.190.157 2015-04-24 16:28:35,802 fail2ban.action [8527]: ERROR [ -n "" ] && app="app " -- stdout: b'' 2015-04-24 16:28:35,803 fail2ban.action [8527]: ERROR [ -n "" ] && app="app " -- stderr: b'' 2015-04-24 16:28:35,803 fail2ban.action [8527]: ERROR [ -n "" ] && app="app " -- returned 1 - With action = ufw[application=OpenSSH], it was silently not doing anything (no errors after "Ban x.x.x.x", but no IP addresses in ufw status). Re-arranged the bash commands on two lines, and it works with or without <application>.	10 years ago
Lee Clemens	8f792f52fb	Add drupal-auth filter and jail	10 years ago
Yaroslav Halchenko	ca849b93dc	Initial changes for the release -- simplified ChangeLog header etc	10 years ago
Lee Clemens	b530d88eca	Merge remote-tracking branch 'upstream/master' into bf/1000-asteriskBlocksSelf Conflicts: ChangeLog	10 years ago
Markus Oesterle	b9a09af914	Added changes to ChangeLog & updated sample test cases	10 years ago
Thomas Mayer	c0cf3daac8	Add myself to the changelog	10 years ago
Thomas Mayer	c9b24839e4	Character detection heuristics for whois output via optional setting in mail-whois*.conf (Closes #1003 ) when set by user, - detects character set of whois output (which is undefined by RFC 3912) via heuristics of the file command - converts whois data to UTF-8 character set with iconv - sends the whois output in UTF-8 character set to mail program - avoids that heirloom mailx creates binary attachment for input with unknown character set	10 years ago
Lee Clemens	72f4bcfbff	Match hacking attempt IP instead of asterisk server IP (closes #1000 )	10 years ago
Yaroslav Halchenko	320a28a4a4	DOC: make a warning for recidive jail to increase dbpurgeage (Closes #964 )	10 years ago
Yaroslav Halchenko	31d107d181	BF: asyncore.loop poll=True for recent (>=3.4) pythons too should avoid File /usr/lib/python3.4/asyncore.py, line 208, in loop poll_fun(timeout, map) File /usr/lib/python3.4/asyncore.py, line 145, in poll r, w, e = select.select(r, w, e, timeout) OSError: [Errno 9] Bad file descriptor	10 years ago
Yaroslav Halchenko	daa2a9e5d8	Merge pull request #975 from sebres/gh-973-fix BF: binding parameter error (unsupported type) (closes gh-973) ...	10 years ago
Teubel György	0254cbf7fb	Flush logs at USR1 signal	10 years ago
sebres	2bfe22aa66	makes test case more precise;	10 years ago
sebres	6c788a32ee	BF: binding parameter error (unsupported type) by writing json with invalid encoded lines into sqlite database (gh-973); especially python < 3.0; try to prevent occurring such errors in the future;	10 years ago
Yaroslav Halchenko	83805ee5dc	Changelog for preceding merge	10 years ago
Yaroslav Halchenko	54e182e017	Merge pull request #955 from sebres/fail2ban-regex-gh-954 BF: fail2ban-regex does not read '.local' file of given filter (Close #954)	10 years ago
Yaroslav Halchenko	ae2af0d51b	Minor tune up to changelog (we should eventually just make it into .md format)	10 years ago
Yaroslav Halchenko	07b0ab07ad	Merge branch 'master' of https://github.com/rumple010/fail2ban * 'master' of https://github.com/rumple010/fail2ban: Changed default TTL value to 60 seconds. Added a reminder to create an nsupdate.local file to set required options. Modified the ChangeLog and THANKS files to reflect the addition of action.d/nsupdate.conf. add nsupdate action Conflicts: ChangeLog	10 years ago
sebres	74c6f6ac4b	BF: fail2ban-regex does not read '.local' file of given filter (gh-954)	10 years ago
Yaroslav Halchenko	3fb2becddb	Merge pull request #949 from leeclemens/enh/configSyslogSocket Configure Syslog Socket Path (closes #814)	10 years ago
Yaroslav Halchenko	119a7bbb16	Merge pull request #939 from szepeviktor/geoip Added sendmail-geoip-lines.conf	10 years ago
Lee Clemens	d676a9fd4f	update ChangeLog with syslogsocket config enhancement	10 years ago
Yaroslav Halchenko	40068f5f31	Merge pull request #933 from mrc0mmand/nginx-botsearch Add jail nginx-botsearch and refactor common with apache-botsearch regexes into botsearch-common	10 years ago
Yaroslav Halchenko	eaca33e227	Merge branch 'enh/clarifyDnsUtilsMethods' of https://github.com/leeclemens/fail2ban * 'enh/clarifyDnsUtilsMethods' of https://github.com/leeclemens/fail2ban: Update ChangeLog Clarify filter.DNSUtils functions' terminology and add unittests Conflicts: ChangeLog -- rephrased a bit as well	10 years ago
Lee Clemens	ed71a7cd22	Update ChangeLog	10 years ago
František Šumšal	9bd25f51c1	Added ChangeLog and THANKS entry	10 years ago
Lee Clemens	4091fdde27	Update ChangeLog from PR 930	10 years ago
Orion Poplawski	e7ff7e90b7	[postfix-sasl] update regexes - Add : to match "SASL LOGIN authentication failed: Password:" - Add ignoreregex to ignore system authentication issues: "warning: unknown[1.1.1.1]: SASL LOGIN authentication failed: Connection lost to authentication server" - Add test log messages for both	10 years ago
Yaroslav Halchenko	646c799231	Changelog for above merge	10 years ago
Yaroslav Halchenko	73af02ffc6	Merge pull request #940 from leeclemens/ENH/ApacheFakeGoogleBot New jail: apache-fakegooglebot	10 years ago
Yaroslav Halchenko	7f2d1a7269	minor changelog entry reformatting	10 years ago
Yaroslav Halchenko	7ada96b4e9	Merge pull request #932 from opoplawski/dovecot Dovecot - dovecot auth failure from EL7	10 years ago
Yaroslav Halchenko	8f6d9c6a5a	Merge branch 'enh/local_time_zone' of https://github.com/yarikoptic/fail2ban * 'enh/local_time_zone' of https://github.com/yarikoptic/fail2ban: fixed typos, thanks szepeviktor for review ENH: use non-UTC date invocation (without -u) and report offset for localzone (%z) Conflicts: ChangeLog	10 years ago
Yaroslav Halchenko	96ae041132	fixed typos, thanks szepeviktor for review	10 years ago
Lee Clemens	00961d5281	Remove ignorecommand addition from ChangeLog	10 years ago
Lee Clemens	af078532ac	New jail: apache-fakegooglebot Detects fake googlebot user agents in apache access log	10 years ago
Viktor Szépe	0430e0dacc	Changelog entry for sendmail-geoip-lines	10 years ago
Yaroslav Halchenko	ec6a30efcf	ENH: define ignoreregex for all filters explicitly, to avoid warnings (Closes #934 )	10 years ago
Orion Poplawski	b4776a1ba0	Match dovecot unknown user line	10 years ago
Orion Poplawski	ee5c5b34d6	Add ChangeLog and THANKS entry	10 years ago
Yaroslav Halchenko	64feb0fd16	Merge pull request #924 from leeclemens/ENH/StatusExtendedInfo Add extended info to status output using Cymru	10 years ago
Lee Clemens	486214585e	Update extended status to accept additional argument, flavor Default to as-in behavior, or flavor=="basic"	10 years ago
Andrew St. Jean	e0f11ae722	Modified the ChangeLog and THANKS files to reflect the addition of action.d/nsupdate.conf.	10 years ago
Yaroslav Halchenko	085d0f72ed	ENH: use non-UTC date invocation (without -u) and report offset for localzone (%z)	10 years ago
Yaroslav Halchenko	65980a70fc	Merge branch 'enh/recidive-allports' of https://github.com/yarikoptic/fail2ban * 'enh/recidive-allports' of https://github.com/yarikoptic/fail2ban: use iptables-allports for recidive Conflicts: ChangeLog	10 years ago
Lee Clemens	60ac0a1a17	Add extended info to status output using Cyrmu	10 years ago
sebres	33e9e2174a	recursive/embedded version of issue/907; test cases merged from remote-tracking branch 'yarikoptic:enh/embedded_tags' into issue/907 infinite busy loop on _escapedTags match in substituteRecursiveTags gh-907	10 years ago
sebres	b04a51246f	infinite busy loop on _escapedTags match in substituteRecursiveTags gh-907	10 years ago
sebres	12e3cca3f2	port[s] typo fixed in jail.conf/nginx-http-auth, issue gh-913	10 years ago
Yaroslav Halchenko	c7edd9e67f	Merge pull request #901 from leeclemens/ENH/PostfixRBL Create Jail for Postfix based on RBL	10 years ago
Yaroslav Halchenko	995b1d18df	Merge pull request #906 from leeclemens/BF/755-strptime Fix strptime thread safety issue	10 years ago
Lee Clemens	77677e43df	Merge branch 'master' of github.com:fail2ban/fail2ban into ENH/PostfixRBL	10 years ago
Lee Clemens	4714028c69	Change case and tense for consistency	10 years ago
Lee Clemens	bda8dc1926	Merge branch 'master' of github.com:fail2ban/fail2ban into ENH/PostfixRBL	10 years ago
Lee Clemens	2f360ce447	Update Changelog with strptime fix	10 years ago
Lee Clemens	38641e741a	Merge branch 'master' of github.com:fail2ban/fail2ban into BF/755-strptime Conflicts: ChangeLog	10 years ago
Lee Clemens	541a747d79	Update Changelog with strptime fix	10 years ago
TorontoMedia	74c3d5d96c	Updated ChangeLog	10 years ago
TorontoMedia	948eec6425	Upd	10 years ago
TorontoMedia	a47001ea0e	Updated ChangeLog	10 years ago
TorontoMedia	c2bb3253ad	Update ChangeLog	10 years ago
Yaroslav Halchenko	acfa83229b	Merge branch 'master' of git://github.com/fail2ban/fail2ban * 'master' of git://github.com/fail2ban/fail2ban: Update year in postfix logs test file Add 'Client host rejected error message' regex Not sure if it was reworded (using Postfix 2.6) or a slightly different error, but I only have "Client host rejected: cannot find your hostname"	10 years ago
Lee Clemens	fe72a5585c	Create Jail for Postfix based on RBL Use RBL blocks to ban addresses, unique Jail so maxretry can be set to 1 (vs postfix.conf)	10 years ago
Lee Clemens	2d7429c47c	Add 'Client host rejected error message' regex Not sure if it was reworded (using Postfix 2.6) or a slightly different error, but I only have "Client host rejected: cannot find your hostname"	10 years ago
Yaroslav Halchenko	d65c4f8f5d	moved debian's initd file to files/debian-initd from debian branch	10 years ago
Yaroslav Halchenko	bcfcefa203	Merge branch 'patch-2' of https://github.com/szepeviktor/fail2ban * 'patch-2' of https://github.com/szepeviktor/fail2ban: downcase example Added an item to "Fixes" postfix-sasl failregex case insensitive	10 years ago
Viktor Szépe	10f68f4946	Update ChangeLog	10 years ago
Viktor Szépe	190f55b06e	Added an item to "Fixes"	10 years ago
bes-internal	ccc986b7d8	exim filter: correct failregex for exim with extended log options incoming_interface, incoming_port, outgoing_port	10 years ago
sebres	80fb48c5b0	Merge remote-tracking branch 'remotes/upstream/master' into sebres:addfailregex-gh-867	10 years ago
sebres	effdb450fc	better and scalable solution for gh-867 (and gh-868), using only name convention like %(known/failregex)s to add custom expressions, so no interface changes in jail.conf are necessary (for example see test-known-interp in test cases);	10 years ago
Yaroslav Halchenko	9bab6d0009	Changelog entry for preceding fix	10 years ago
sebres	d63b125877	interpolation of config readers extended with `%(known/parameter)s`. (means last known option with name `parameter`).	10 years ago
sebres	1439152121	test cases extended (now correct)	10 years ago
sebres	cad09d2df3	BF: failregex declared direct in jail was joined to single line, (specifying of multiple expressions was not possible); feature request (gh-867): new options for jail introduced addfailregex/addignoreregex: extends regex specified in filter (opposite to failregex/ignoreregex that overwrites it);	10 years ago
Yaroslav Halchenko	2a3790f8e8	use iptables-allports for recidive	10 years ago
Yaroslav Halchenko	a44cfba9ae	Merge pull request #841 from opoplawski/firewallcmd-multiport ChangeLog for firewallcmd-new multiport support	10 years ago
Orion Poplawski	21be983620	ChangeLog for firewallcmd-new multiport support	10 years ago
Yaroslav Halchenko	967485c2d0	improving grepping	10 years ago
Yaroslav Halchenko	36abb5ed96	BF: fix $ for % in jail.conf. Debian bug #767255	10 years ago
Yaroslav Halchenko	7acddcbe4a	Post-release boost to .dev	10 years ago
Yaroslav Halchenko	987356d6c0	Changes for the 0.9.1 release versioning	10 years ago
pacop	b60e2bf42f	Add portsentry to changelog	10 years ago
Yaroslav Halchenko	e2f49b7334	DOC: very minor (tabs/spaces)	10 years ago
sebres	7d3e6e9935	code review, change log entries added;	10 years ago
SlowRiot	7b5dc9f24f	adding test case, changelog and thanks entries for apache shellshock filter	10 years ago

1 2 3 4 5 ...

698 Commits (2b358bc1a4c985c07120d8b4bc7e025339926bdc)