fail2ban

Commit Graph

Author	SHA1	Message	Date
sebres	99344d28c8	Introduces new tags with hostname: - `<fq-hostname>` - fully-qualified name of host (the same as `$(hostname -f)`) - `<sh-hostname>` - short hostname (the same as `$(uname -n)`) Execution of `uname -n` replaced in all mail actions with most interesting fully-qualified `<fq-hostname>`.	8 years ago
Peter van der Does	bb79e7f413	Parameter not needed The parameter '-s' causes an error as the <mailcmd> already has the parameter.	8 years ago
sebres	97e8b42d34	dummy action extended with more examples and test-covered now	8 years ago
sebres	d03872fbbf	bulk unban: add new command `actionflush` default for several iptables/iptables-ipset actions (and common include): iptables-common iptables iptables-allports iptables-multiport-log iptables-multiport iptables-new iptables-ipset-proto4 iptables-ipset-proto6 iptables-ipset-proto6-allports executing `actionflush` command covered for this actions now	8 years ago
sebres	8bf79fa483	implemented execution of `actionstart` on demand, if action depends on `family` (closes gh-1741); new action parameter "actionstart_on_demand" (bool) can be set to prevent/allow starting action on demand (default retrieved automatically, if some conditional parameter `param?family=...` presents in action properties);	8 years ago
Serg G. Brester	d042981954	Merge pull request #1655 from ajcollett/0.10 Added config for AbuseIPDB	8 years ago
Serg G. Brester	b1f5ac9484	Update abuseipdb.conf	8 years ago
sebres	6a2c95da95	`action.d/sendmail-geoip-lines.conf` fixed using new tag `<ip-host>` (dns-cache and without external command execution); changelog updated;	8 years ago
sebres	d2a3d093c6	rewritten CallingMap: performance optimized, immutable, self-referencing, template possibility (used in new ActionInfo objects); new ActionInfo handling: saves content between actions, without interim copying (save original on demand, recoverable via reset); test cases extended	8 years ago
sebres	4bf09bf297	provides new tag `<ip-rev>` for PTR reversed representation of IP address; [action.d/complain.conf] fixed using this new tag;	8 years ago
Jan Grewe	58c68b75f0	Remove double-quotes from email addresses	8 years ago
Jan Grewe	1bcf0de7c1	Update complain.conf	8 years ago
Jan Grewe	901eeff53d	Make Abusix lookup compatible with Dash	8 years ago
sebres	e8a1556562	Merge remote-tracking branch 'master' into 0.10 # Conflicts: # fail2ban/tests/samplestestcase.py	8 years ago
Juliano Jeziorny	1fe554dd25	Introduced Citrix Netscaler action	8 years ago
sebres	74a6afadd5	Mail-actions switched to use new option "norestored" instead of checking of variable `restored` during shell execution (prevents executing of such actions at all).	8 years ago
sebres	ee3c787cc6	Recognize restored (from database) tickets after restart (tell action restored state of the ticket); Prevent executing of several actions (e.g. mail, send-mail etc) on restart (bans were already notified). Test cases extended (smtp and by restart in ServerReloadTest). Closes gh-1141 Closes gh-921	8 years ago
sebres	c9f32f75e6	Merge branch '0.9-fix-regex-using-journal' into 0.10-fix-regex-using-journal (merge point against 0.9 after back-porting gh-1660 from 0.10)	8 years ago
Andrew James Collett	1c41390f7c	Restructured the way the catagories work. Jail.conf is cleaner and abuseipdb.conf is more flexible.	8 years ago
Andrew James Collett	55e107310f	Added config for AbuseIPDB, ony tested on Ubuntu 16.04	8 years ago
Yaroslav Halchenko	31a1560eaa	minor typos (thanks Vincent Lefevre, Debian #847785 )	8 years ago
sebres	a2af19c9f0	fixed several actions, that could not work with jails using multiple logpath; additionally repaired execution in default shell (bad substitution by `${x//...}` executing in `/bin/sh`); added helper "action.d/helpers-common.conf", and `_grep_logs` part-command for actions needed grep logs from multiple log-files test cases: executing of some complex actions covered	8 years ago
sebres	c809c3e61e	Merge branch 'master' into 0.10	8 years ago
Nils	d08db22b92	Create npf.conf for the NPF packet filter This file adds support for the NPF packet filter, available on NetBSD since version 6.0	8 years ago
sebres	8b0f6c5413	badips test cases check availability of badips service (and skip this tests if it not available)	8 years ago
sebres	d71a525a85	Merge branch 'master' into 0.10 (resolve conflicts and cleaning tree points after back-porting gh-1508 0.10 -> 0.9)	8 years ago
Yaroslav Halchenko	c0994b0c6c	DOC: minor typo (thanks John Bernard) Closes #1496	8 years ago
Serg G. Brester	af8b650a37	badip timeout option introduced, set to 30 seconds in our test cases (#1463 ) cherry-picked from 0.10 (little bit modified in test_badips.py, because no --fast option in test cases)	9 years ago
sebres	e39126f630	badip timeout option introduced, set to 30 seconds in our test cases	9 years ago
sebres	0fdc56546f	Fixed misunderstanding of port in (ban)action: port will be always specified in jail config ([DEFAULT] or jail)	9 years ago
Yaroslav Halchenko	1ebc3facb1	BF: maintain previous default beh for pf -- ban a port (ssh) only	9 years ago
sebres	4d51c591c1	pf.conf: warranted consistently echoing for the pf actiontype if actiontype or multiport tags will be customized;	9 years ago
Alexander Koeppe	b5e031f3c3	some documentation for multiport use in pf.conf	9 years ago
sebres	1e7fd26f5f	rename `actionoptions` to `actiontype` in pf-action (multiport) + fixed test cases	9 years ago
Alexander Koeppe	e74047ae49	revert to common config for PF covering multi and allports	9 years ago
Alexander Koeppe	3e1328c83b	split PF config files between all- and multi port	9 years ago
sebres	0c44ecfc77	action.d/firewallcmd-ipset.conf: different name of the match set's for IPv4/IPv6, using conditional <ipmset>, analog to the iptables-ipset; test cases for 3 firewallcmd extended;	9 years ago
TorontoMedia	ffebde68e0	Update firewallcmd-multiport.conf	9 years ago
TorontoMedia	07de83e04a	Update firewallcmd-common.conf	9 years ago
TorontoMedia	810d5996b5	Update firewallcmd-rich-logging.conf	9 years ago
TorontoMedia	7e54cee8d6	updated firewallcmd actions	9 years ago
sebres	504e5ba6f2	actions support IPv6 now: - introduced "conditional" sections, see for example `[Init?family=inet6]`; - iptables-common and other iptables config(s) made IPv6 capable; - several small code optimizations; * all test cases passed (py3.x compatible);	9 years ago
sebres	75028585c0	test cases extended for verifying ipv4/ipv6, normalized pf-action with test case	9 years ago
Alexander Koeppe	ed2f3ef77d	improve PF action and make IPv6 aware	9 years ago
TorontoMedia	3d239215cd	Two new firewalld actions with rich rules for firewalld-0.3.1+ (gh-1367) closes #1367	9 years ago
Serg G. Brester	fe14c8fa05	Merge pull request #1292 from albel727/master Add nftables actions	9 years ago
Alexander Belykh	985e8938a4	Refactor nftables actionstop into smaller parts	9 years ago
Alexander Belykh	9779eeb986	Add nftables_type/family/table parameters	9 years ago
Alexander Belykh	260c30535d	Escape curly braces in nftables actions	9 years ago
Alexander Belykh	1983e15580	Add empty line between parameters in nftables-common.conf	9 years ago

1 2 3 4 5 ...

323 Commits (39c4acf6bd0726131bbc3848d514ec66341ce70f)