fail2ban

Commit Graph

Author	SHA1	Message	Date
Steven Hiscocks	0c869910ea	BF: Fix fail2ban-regex not parsing journalmatch correctly	10 years ago
sebres	74c6f6ac4b	BF: fail2ban-regex does not read '.local' file of given filter (gh-954)	10 years ago
Steven Hiscocks	2d54161696	Merge branch 'kwirk/harmonize-log-msgs' Conflicts: ChangeLog - Keep all additions	11 years ago
Steven Hiscocks	4fc7f1a831	ENH: Tweak naming of getF2BLogger, and ensure consistent use	11 years ago
Yaroslav Halchenko	eb2487986c	ENH: minor -- print time which was used to process lines	11 years ago
Yaroslav Halchenko	3471f13a84	Merge pull request #700 from kwirk/format-traceback-to-helpers ENH: Move traceback formatter to from tests.utils to helpers	11 years ago
Steven Hiscocks	7cc64a14e0	BF: fail2ban-regex assertion error caused by miscounted "missed" lines Caused when removing lines as part of multiline regex, which had been previously considered missed.	11 years ago
Steven Hiscocks	6a740f684a	ENH: Move traceback formatter to from tests.utils to helpers Now allows for tests to be removed from package if desired	11 years ago
Hank Leininger	2d42b46a7c	Add a --print-all-matched option. The default behavior, to not print any matched lines, is unchanged.	11 years ago
Steven Hiscocks	e193e67718	BF: fail2ban-regex mix of tabs and spaces	11 years ago
Daniel Black	aa7e8fb9ce	DOC: Credits. close gh-644	11 years ago
Steven Hiscocks	5630c56c75	ENH: Change logging levels and make info more verbose	11 years ago
Daniel Black	cc1a9cc45d	BF: match up fail2ban-regex for datedetector/datetemplate changes	11 years ago
Daniel Black	95add8a1c5	BF: datepattern handling in fail2ban-regex	11 years ago
Daniel Black	58a5983367	ENH: fix fail2ban-regex for filter arguement substition	11 years ago
Steven Hiscocks	c80297045e	ENH: Pass date time straight from systemd backend Removes need to reparse the date time back from the ISO format	11 years ago
Steven Hiscocks	06a7b6534e	DOC: Correct use of tab to spaces in fail2ban-regex help message	11 years ago
Steven Hiscocks	d9afcc178a	MINOR: PEP-8 tweaks for multiline-matches change set	11 years ago
Steven Hiscocks	60d298d898	BF: fail2ban-regex erroneously reporting multiple regexs had matched	11 years ago
Steven Hiscocks	c886414e2e	ENH+BF: Capture multiline matched lines into fail ticket Previously only the last line of the match was being saved, not all lines involved in matching. Log lines are now broken into 3 part tuple, with the line pre-datetime, the datetime, and post-datetime. Allows reformation of full line, but also use of the line without the datetime present. Attempting to use the term "tupleLine(s)" where possible, to avoid confusion with normal read lines. May also wish to consider that regexs could be made to capture more lines of interest if some form of unique reference is available. This may allow more lines of interest to be captured, which may not be picked up by the traditional "grep <ip>" approach i.e. ones which do not have the ip address in. This also simplified the fail2ban-regex statistics for missed lines. Also resolved bug with missed lines time extracted for debuggex having some lines present which were captured in a multiline regex. Also resolved independent issue with ignored line check including the datetime, which raised assertion error in the rare case the datetime matched the ignore regex, and the rest of line only matched a failregex	11 years ago
Daniel Black	47d35c9d80	MRG: 0.8.11 to 0.9 Epnoc of selinux is now true UTC Merge multiline support and date detection in filter	11 years ago
Steven Hiscocks	e07df3f7d4	ENH: fail2ban-regex uses ISO8601 when using journal backend Also fix setting of date pattern occurring too early, before filter being created.	11 years ago
Daniel Black	d5291517a7	MISC: merge from master	11 years ago
Steven Hiscocks	088e7f92aa	ENH: fail2ban-regex uses iterable for files and journal access	11 years ago
Steven Hiscocks	72430e805d	Merge branch 'datepatterns' into datepatterns-dateregex Conflicts: bin/fail2ban-regex fail2ban/client/beautifier.py fail2ban/server/datedetector.py	12 years ago
Steven Hiscocks	05fac65a50	BF: fail2ban-regex multiline regex matches no longer in missed lines Closes #263 Closes #282	12 years ago
Steven Hiscocks	1eea0dcec8	Merge branch 'master' into 0.9 Conflicts: ChangeLog bin/fail2ban-regex bin/fail2ban-testcases config/jail.conf fail2ban/server/failregex.py fail2ban/server/filter.py fail2ban/tests/files/logs/lighttpd fail2ban/tests/files/logs/mysqld.log fail2ban/tests/files/logs/wu-ftpd fail2ban/tests/filtertestcase.py fail2ban/tests/utils.py testcases/files/logs/lighttpd testcases/files/logs/lighttpd-auth testcases/files/logs/mysqld-auth testcases/files/logs/mysqld.log testcases/files/logs/wu-ftpd testcases/files/logs/wuftpd	12 years ago
Steven Hiscocks	3dbe2c04ca	BF: fail2ban now don't print maxlines twice when using ignoreregex Also read failregex first, as more natural place to get maxlines value from.	12 years ago
Steven Hiscocks	1dbba35cd9	Merge branch 'master' into 0.9 Conflicts: fail2ban/client/jailreader.py fail2ban/tests/clientreadertestcase.py fail2ban/tests/files/logs/sshd	12 years ago
Steven Hiscocks	88bee24edb	DOC: Neaten format for fail2ban-regex maxlines print	12 years ago
Steven Hiscocks	d081a71759	BF: fail2ban-regex on python3+	12 years ago
Steven Hiscocks	5ca6a9aeb6	Merge branch 'systemd-journal' into 0.9 Conflicts: bin/fail2ban-regex config/filter.d/sshd.conf Closes github #224	12 years ago
Steven Hiscocks	f87c53fa52	BF: fail2ban-regex adding duplicate lines with each regex This is another fix on top of `e73b3dd` to correctly resolve this issue	12 years ago
Steven Hiscocks	123ec3da13	BF: Incorrect import for 0.9 branch in fail2ban-regex	12 years ago
Yaroslav Halchenko	8487cb2e90	Merge commit '0.8.10-31-g1ab0f0f' into 0.9 * commit '0.8.10-31-g1ab0f0f': (24 commits) BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address ENH: readibility thanks to Yaroslav DOC: Changelog for fail2ban-regex RF DOC: Changelog for asterisk hardening ENH: fail2ban-regex -- add specification of loglevels to enable RF: reworked -regex cmdline tool to use optparse, some unification and enhancement of outputs ENH: 'heavydebug' level == 5 for even more debugging in tricky cases ENH: asterisk -- use \S instead of [^:] + prefix failregex with ^\[ BF: missed a space BF: [SSL-out] is optional in assp ENH: regex hardening on assp ENH: anchor a bit mor. Use \d and \w where possible. Escape a literal . TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15 ENH: proftpd chan accept usernames with spaces ENH: injection of fail data into USER field ENH: dovecot regexs rewritten and extra failures ENH: proftp regex hardening and log messages ENH/BF: exim improvements with sample BF: fix to proxy port in 3proxy example ENH: sample log + more specific regex ... Conflicts: -- it was a messy merge/resolution. ChangeLog bin/fail2ban-regex fail2ban-testcases fail2ban/server/filter.py	12 years ago
Steven Hiscocks	e73b3dd53e	BF: fail2ban-regex adding duplicate lines with each regex This issue was caused by the fact that every "line" is processed for each regex, meaning each line was duplicated for every regex. This caused duplicate fail matches and the buffer filling too quickly and possibly missing failures.	12 years ago
Steven Hiscocks	c08bd67f50	BF: fail2ban-regex systemd-journal field fix for __CURSOR	12 years ago
Steven Hiscocks	f7d328195f	NF: Add systemd journal backend	12 years ago
Steven Hiscocks	c98b01bd1d	BF: fail2ban-regex fix for maxlines init option reader	12 years ago
Steven Hiscocks	7371d2a271	ENH: Added datepattern option to fail2ban-regex	12 years ago
Yaroslav Halchenko	1fcb5efbd7	ENH: make fail2ban-regex aware of possible maxlines in the filter config file	12 years ago
Steven Hiscocks	fa0f8f9e6d	Merge branch '0.9' into py3 Conflicts: .travis.yml MANIFEST bin/fail2ban-regex fail2ban/server/filter.py fail2ban/tests/servertestcase.py setup.py	12 years ago
Steven Hiscocks	8e0f5f8ea6	Merge branch '0.9' into module Conflicts: fail2ban/tests/clientreadertestcase.py fail2ban/tests/filtertestcase.py	12 years ago
Steven Hiscocks	a153653a27	ENH+TST: Move fail2ban-* scripts to bin/	12 years ago

44 Commits (4296d1a9a99efb3ea9f8efc121e67864d4ad109c)