1bb427cc14
TST: remove dup test log entry
2013-07-12 09:09:24 +10:00
6ce41a611d
BF: fix filter on apache-auth. Closes #286
2013-07-11 22:13:51 +10:00
5412d7336f
DOC: ChangeLog confict
2013-07-09 08:23:44 +10:00
5f04b4954f
Merge pull request #280 from yarikoptic/master
...
BF+ENHs: polling backend tracks ino and size now in addition to mtime, filters do not read file unless it has content + few other minor issues
2013-07-07 08:33:55 -07:00
619603fe05
BF: match asterisk InvalidPassword correctly
2013-07-07 17:48:20 +10:00
bfa2b9dec3
ENH: dovecot filter additions for session, time value and blank user
2013-07-05 18:36:02 +01:00
47ac39fb34
TST: minor enhancement to test failure msg
2013-07-02 23:37:41 -04:00
052e7ff9da
ENH: deprecate sophisticated MTimeSleep in favor of no sleeping at all
...
all invocations of mtimesleep() are left in the tests for now
2013-07-02 20:44:28 -04:00
8c125b6053
ENH: do not sleep 1 sec only on older Pythons while testing filters
2013-07-02 19:50:22 -04:00
d6dece4900
ENH: Split log and provide jail examples
2013-07-03 07:42:47 +10:00
e9c8a51ce4
ENH: further tighten up detection of mtimesleep duration + log what was assigned
2013-07-02 17:26:41 -04:00
8f3671bc94
BF: figure out minimal sleep time needed for mtime changes to get detected. Close #223 , and probably #103
2013-07-02 17:10:00 -04:00
e6ebcf6687
Merge branch 'dovecot' of https://github.com/grooverdan/fail2ban
...
* 'dovecot' of https://github.com/grooverdan/fail2ban :
ENH: remove non-capturing groups for readibility
BF: fix dovecot filter for when no TLS is enabled on pop/imap
Conflicts:
ChangeLog -- changelog entries. Also untabified few other spots
2013-07-02 10:12:51 -04:00
f0f237fa05
Merge pull request #269 from grooverdan/asterisk
...
ENH: filter.d/asterisk - consolidate log prefix regex and add a few fail messages
2013-07-02 07:04:10 -07:00
4777cfd4e7
ENH: split out exim-spam into speparate filter
2013-07-02 20:03:16 +10:00
54cce29b3e
Merge pull request #271 from yarikoptic/master
...
BF: support apache 2.4 more detailed error log format. Close #268
Thanks @grooverdan for the review
2013-07-01 20:52:36 -07:00
c7d64c3c7f
TST: url reference fix
2013-07-01 21:58:03 +10:00
ca996ace5e
ENH: remove temporary failures from local_scan in line with comments in gh-258
2013-07-01 21:56:02 +10:00
72f9e6a51e
ENH/TST: more samples and rejection types for sender verify fail and rejected RCPT
2013-07-01 21:50:35 +10:00
3b76fc79f9
BF: fix dovecot filter for when no TLS is enabled on pop/imap
2013-07-01 21:12:51 +10:00
b670b5c792
TST: Change depreciated assertEquals to assertEqual in some tests
2013-06-29 20:17:42 +01:00
1b170b2aef
BF: support apache 2.4 more detailed error log format. Close #268
2013-06-28 09:49:36 -04:00
6d331bcbea
BF: make colon after [daemon] optional. Close #267
2013-06-27 11:44:47 -04:00
fa7a105483
ENH: filter.d/asterisk - consolidate log prefix regex and add a few fail messages
2013-06-27 09:16:14 +10:00
b9e971c25d
Merge branch 'exim' of https://github.com/grooverdan/fail2ban
...
* 'exim' of https://github.com/grooverdan/fail2ban :
DOC: credits/blame to me for changes to exim
ENH: new exim filter regexs. Also note a begining PID in this format. Thanks to ftoppi for the log entries
TST/ENH: Improve regex around exim
2013-06-23 00:21:28 -04:00
057f0ad135
ENH: allow_no_files option for jail's convert to allow testing of stock jail.conf
2013-06-21 12:44:37 -04:00
b8cfda68b8
ENH: new exim filter regexs. Also note a begining PID in this format. Thanks to ftoppi for the log entries
2013-06-16 00:19:37 +10:00
d441d61a1e
TST/ENH: Improve regex around exim
...
rejected by local_scan now has test cases.
Unrouteable address error messages now normalised after looking into
exim code.
2013-06-15 12:34:16 +10:00
9d4b613ee4
Merge branch '3proxy' of https://github.com/grooverdan/fail2ban
...
* '3proxy' of https://github.com/grooverdan/fail2ban :
BF: fix to proxy port in 3proxy example
ENH: sample log + more specific regex
BF: authentication errors end in 01-09 but the beginning part indicates the service as per https://github.com/fail2ban/fail2ban/issues/246#issuecomment-19327955 thanks to ykimon
BF: need to anchor the start to avoid another repeat of DoS injection like Apache
ENH: stricter regex thanks to Steven Hiscocks (kwirk)
DOC: credits
Conflicts:
ChangeLog
2013-06-14 12:32:51 -04:00
173fe48e77
Merge branch 'exim' of https://github.com/grooverdan/fail2ban
...
* 'exim' of https://github.com/grooverdan/fail2ban :
BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address
ENH: readibility thanks to Yaroslav
ENH/BF: exim improvements with sample
Conflicts:
ChangeLog
2013-06-14 12:28:07 -04:00
ec629ab4e8
Merge branch 'proftpd' of https://github.com/grooverdan/fail2ban
...
* 'proftpd' of https://github.com/grooverdan/fail2ban :
ENH: proftpd chan accept usernames with spaces
ENH: injection of fail data into USER field
ENH: proftp regex hardening and log messages
Conflicts:
ChangeLog
2013-06-14 12:16:59 -04:00
8cc13b5b40
BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address
2013-06-14 18:12:53 +10:00
e8b6acfa65
TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15
2013-06-14 00:53:03 +10:00
2e2ec5d1f5
ENH: injection of fail data into USER field
2013-06-14 00:17:41 +10:00
dbe7ffe050
ENH: dovecot regexs rewritten and extra failures
2013-06-13 23:52:15 +10:00
4c67a269bf
ENH: proftp regex hardening and log messages
2013-06-13 22:11:05 +10:00
3e3802512a
ENH/BF: exim improvements with sample
2013-06-13 17:44:18 +10:00
9dbaec0894
ENH: sample log + more specific regex
2013-06-13 10:23:14 +10:00
6ccd57813c
BF: anchor apache- filters. Close #248
...
See https://vndh.net/note:fail2ban-089-denial-service for more information
2013-06-11 19:19:25 -04:00
16d63434ef
DOC: credits
2013-06-11 23:56:09 +10:00
7248ef4564
Filter Asterisk: Add sample log entry to testcase.
...
* Sample log entry for AUTH_UNKNOWN_DOMAIN (Not a local domain)
2013-06-11 02:13:37 +02:00
916b5a7c23
TST: normalize logs to use example.com and 1.2.3.4 as IP
2013-05-30 10:24:48 +10:00
eceede175a
Merge branch 'patch-4' of https://github.com/silviogarbes/fail2ban into asterisk-227
2013-05-30 09:37:00 +10:00
fae2d5c0ce
Merge branch 'patch-3' extending roundcube failregex to support v0.9+ (from https://github.com/teroz/fail2ban )
...
* 'patch-3' of https://github.com/teroz/fail2ban :
failregex when roundcube log driver is set to 'syslog'
fixed failregex line for roundcube 0.9+
2013-05-29 09:38:35 -04:00
7a4db4b4b9
TST: Fix fail2ban.conf reader test for unreliable dictionary order
2013-05-26 14:36:51 +01:00
098c88a67b
failregex when roundcube log driver is set to 'syslog'
2013-05-26 07:46:29 +02:00
8a57ffd2fb
TST: test all stock jails to have actions and correctly specifying blocktype
2013-05-24 14:33:48 -04:00
52fa5f19b0
Update asterisk
2013-05-14 12:58:43 -03:00
04bf9eceb6
BF: (travis) relax the test for needed to be presented installed directories -- allow new
...
on travis scripts install into user's home by default
2013-05-12 23:42:57 -04:00
6aed705f3d
BF: (travis) if tests ran under coverage -- there is a traceback parts to report (thus > would be present)
2013-05-12 23:42:01 -04:00
1b301d723d
ENH: also print the failing traceback line in case of failure
...
Also to troubleshoot
https://travis-ci.org/fail2ban/fail2ban/jobs/7112324
2013-05-12 23:27:32 -04:00
f345c4d7dc
ENH: include explicit list of new files which should not be there upon "install --root"
...
that is to figure out what gets there on failing travis tests:
e.g. https://travis-ci.org/fail2ban/fail2ban/jobs/7112324
2013-05-12 23:22:55 -04:00
571ff33fde
ENH: issue a warning if jail name is longer than 19 symbols ( Close #222 )
2013-05-12 22:19:50 -04:00
bdc86e5f1d
ENH: use the same python executable for setup.py test
...
This doesn't anyhow resolve gh-161 which was revealed consistently on Debian sytem
after adding this testSetupInstallRoot
2013-05-10 11:17:04 -04:00
281d310b7e
ENH: actually tune up TraceBack to determine "unittest" portions of the stack across all python releases
...
before for 2.7 it would spit out "suite" and other components of unittest module
2013-05-10 00:02:49 -04:00
dc05eee0f5
TST: Some primarily smoke tests for tests utils
2013-05-09 23:43:22 -04:00
e70d01bc10
TST: cover few more lines in fail2banreader.py
2013-05-09 23:16:03 -04:00
26715d5e5e
ENH: basic test for setup.py itself (when applicable, should greatly improve coverage ;) )
2013-05-09 23:08:20 -04:00
90d6a4a6cd
ENH: consistent operation of formatExceptionInfo + unittest for it
2013-05-09 22:46:59 -04:00
7a6eecbe21
ENH: close open file in a test
2013-05-09 13:25:29 -04:00
0e5f7b5951
Merge branch '_enh/strip_crlf'
...
* _enh/strip_crlf:
Changelog for preceeding commit
ENH: strip CR and LF while analyzing the lines (processLine) (Close #202 )
2013-05-08 16:36:14 -04:00
28794d842d
ENH: close files in _test_move_into_file
2013-05-08 15:14:28 -04:00
582d1c5ea5
ENH: remove use of $Revision and $Date SVN tags
2013-05-08 13:59:09 -04:00
6fef85ff2d
ENH: strip CR and LF while analyzing the lines (processLine) ( Close #202 )
...
This should allow to resolve issues with logs written in MS-DOS fashion,
e.g. with daemontools
See https://github.com/fail2ban/fail2ban/issues/202\#issuecomment-17393613
2013-05-08 12:07:29 -04:00
571cadd80c
ENH: Use real (resolving) example.com instead of test.example.com
2013-05-08 10:30:38 -04:00
976a65bb89
Merge branch 'bsd_logs' of https://github.com/grooverdan/fail2ban
...
* 'bsd_logs' of https://github.com/grooverdan/fail2ban :
ENH: separate out regex and escape a .
BF: missed MANIFEST include
DOC: credits for bsd log
DOC: bsd syslog files thanks to Nick Hilliard
BF: change common.conf to handle formats of syslog -v and syslog -vv in BSD
Conflicts:
config/filter.d/common.conf
2013-05-08 10:30:04 -04:00
5e1d8b07e8
ENH: logs/sshd -- have ":" after [daemon] (other uses are uncommon)
...
See https://github.com/fail2ban/fail2ban/issues/216\#issuecomment-17535577
for the analysis
2013-05-07 12:30:05 -04:00
ffcac2ccee
ENH: logs/sshd -- use example.com as the resolved hostname in sample log lines
2013-05-07 12:26:13 -04:00
2143cdff39
Merge: opensolaris docs/fixes, no 'sed -i' in hostsdeny, sshd regex tuneups
...
Origin: from https://github.com/jamesstout/fail2ban
* 'OpenSolaris' of https://github.com/jamesstout/fail2ban :
ENH: Removed unused log line
BF: fail2ban.local needs section headers
ENH: Use .local config files for logtarget and jail
ENH+TST: ssh failure messages for OpenSolaris and OS X
ENH: fail message matching for OpenSolaris and OS X
ENH: extra daemon info regex
ENH: actionunban back to a sed command
Readme for config on Solaris
create socket/pid dir if needed
Extra patterns for Solaris
change sed to perl for Solaris
Conflicts:
config/filter.d/sshd.conf
2013-05-06 11:11:12 -04:00
bcecf085f1
Merge pull request #209 from grooverdan/tst_br
...
TST: test case for <br> tags in action
2013-05-06 07:53:41 -07:00
932bd102fe
ENH: Removed unused log line
...
removed #9 per
https://github.com/fail2ban/fail2ban/pull/182#discussion_r4068885
2013-05-04 18:38:05 +08:00
503602b332
TST: test case for <br> tags in action
2013-05-03 16:58:21 +10:00
cde7108033
DOC: bsd syslog files thanks to Nick Hilliard
2013-05-03 16:12:19 +10:00
495f2dd877
DOC: purge of svn tags
2013-05-03 16:03:38 +10:00
89adcd7ff7
Merge branch PR #193 ASSP SMTP Proxy support (with some manual squashing)
...
Origin: https://github.com/lenrico/fail2ban
Squashing was done via rebase -i 1524b076d6
2013-05-03 00:57:49 -04:00
fd01649a61
fixed test date thx to steven
2013-05-03 00:56:53 -04:00
24a8d07c20
added new date format support for ASSP SMTP Proxy
2013-05-03 00:56:46 -04:00
7c409dd24f
Merge branch 'master' of git://github.com/fail2ban/fail2ban
...
* 'master' of git://github.com/fail2ban/fail2ban:
BF: log error only if there were missed config files that couldn't be read
DOC: missing cinfo tags are ok. Log error for self referencing definitions
DOC: s/defination/definition/g learn to spell
ENH: remove stats of config files and use results of SafeConfigParserWithIncludes.read to facilitate meaningful error messages
DOC: ChangeLog for recursive tag substition
ENH: allow recursive tag substitution in action files.
2013-05-02 23:28:18 -04:00
018913db6a
ENH+TST: ssh failure messages for OpenSolaris and OS X
2013-04-30 04:24:56 +08:00
f21566049c
BF: pyinotify backend should also handle IN_MOVED_TO events
2013-04-29 13:54:14 -04:00
1d9abd1b39
ENH: allow recursive tag substitution in action files.
2013-04-29 12:37:16 +10:00
0ac8746d05
ENH: Account for views in named filter. By Romain Riviere in gentoo bug #259458
2013-04-28 11:03:44 +10:00
94956bee84
TST: test all valid loglevels in server testcases
2013-04-14 15:59:05 +01:00
4c4b60f4b4
TST: Add tag replace and escape test for actions
2013-04-14 15:58:35 +01:00
ffaa9697ee
Adjusting previous PR (MySQL logs) according to my comments
2013-04-09 18:00:40 -04:00
3e6be243bf
Merge branch 'Support_for_mysql_log_example' of https://github.com/arto-p/fail2ban
...
* 'Support_for_mysql_log_example' of https://github.com/arto-p/fail2ban :
Added testcase for MySQL date format to testcases/datedetectortestcase.py and example of MySQL log file.
Added support for MySQL logfiles
Conflicts:
testcases/datedetectortestcase.py -- conflictde with other added test cases
2013-04-09 17:55:14 -04:00
33a31e096a
RF+TST: bring inBanList back from private to protected and enabled its rudimentary unittests
2013-03-29 15:33:08 -04:00
e7184e70f6
ENH: increase waiting to 4 sec for gamin/pyinotify
...
This will be the last gesture from me for the bloody tests:
https://travis-ci.org/kwirk/fail2ban/jobs/5904668
2013-03-29 14:59:52 -04:00
ef3f2b7e99
TST: be more aggressive in cleanup of temp files + use mktemp instead of mkstemp
2013-03-27 23:40:50 -04:00
bf4d4af1d4
ENH(BF?): overload open() (for buffering) within filtertestcase to guarantee atomic writing
...
This is with the hope to further resolve random tests failures
( primarily on fast travis-ci systems ;) )
2013-03-27 15:11:49 -04:00
ab044b75ea
BF: delay check for the existence of config directory until read()
2013-03-27 12:22:39 -04:00
f643e2e907
non-static (get|set)BaseDir for Configurator. fixes #160
...
ConfigReader's (get|set)BaseDir are no longer static as a result of
.d/ support RFing
2013-03-27 11:51:07 -04:00
72b06479a5
ENH: Slight tune ups for fresh SOGo filter + comment into the sample log file
2013-03-27 11:09:54 -04:00
105306e1a8
Merge remote-tracking branch 'pr/117/head' -- SOGo filters
...
* pr/117/head:
An example of failed logins against sogo
Update sogo-auth.conf
Update config/filter.d/sogo-auth.conf
Create sogo-auth.conf
Update config/jail.conf
2013-03-27 11:09:35 -04:00
cd57d9c552
Merge pull request #155 from yarikoptic/master
...
TST+ENH: enable basic (smoke) testing of the default jail.conf + improve postfix filter
2013-03-27 05:43:55 -07:00
91d5736c12
ENH: postfix filter -- react also on (450 4.7.1) with empty from/to. fixes #126
2013-03-26 09:40:04 -04:00
c06b7abb46
TST: basic testing of reading the shipped jail.conf (forcing all jails to be enabled)
2013-03-26 00:01:56 -04:00
7064a411c2
ENH: _copy_lines_between_files -- read all needed, and only then write/flush at once
...
I think this is the one which should resolve
https://github.com/fail2ban/fail2ban/issues/103
2013-03-25 23:05:55 -04:00
52af29a080
ENH: adding ability to incorporate tracebacks into log lines while running tests
2013-03-25 23:05:48 -04:00
f72bc13111
BF: allow to wait longer for FilterPoll in test_move_file
2013-03-25 23:05:47 -04:00
e6983b4f9b
BF: Remove custom __str__ for MonitorFailures and just adjust __name__ of the generated class
...
Also to guarantee unique file names across tests -- append incremental
numeric suffix.
This should prevent unittest from not reporting specific unittest method names,
thus complicating the analysis of failures
2013-03-25 23:05:07 -04:00
755f27493e
Merge branch '_tent/conf_d'. fixes #114
...
It also fixes #115 since current implementation provides similarly informative
error messages. But see #153 for possible improvements
* _tent/conf_d:
Reincarnated removed (by mistake) test for SplitAction
ENH: made log messages while parsing files more informative + test for inaccessible file (Closes: gh-24)
NF: allow customization configuration under corresponding .d directories (Closes gh-114)
Fix up for warning/error for inaccessible config files
Warn if config file present but unreadable
Conflicts:
fail2ban-testcases
2013-03-25 11:53:45 -04:00
007827fac6
ENH: increase timeout to 20 sec from 10 sec in assert_correct_last_attempt
...
This is done with a hope to resolve randomly failing tests on travis-ci
and thus fixing the #103
2013-03-25 11:03:55 -04:00
3b4084d471
BF: fixing up for handling of TAI64N timestamps and adding some unittest for prev commit (not effective much though)
2013-03-25 10:41:13 -04:00
edc0eb2a9c
Added testcase for MySQL date format to testcases/datedetectortestcase.py
...
and example of MySQL log file.
2013-03-25 16:00:07 +02:00
ebb6e5f4eb
An example of failed logins against sogo
2013-03-25 09:11:51 +01:00
996e23455c
DOC: reverted unneeded stripping of DoW + added comments for why [:6]
2013-03-22 20:56:45 -04:00
e3d3a6ac02
Merge branch 'datedetector-testcase' of https://github.com/kwirk/fail2ban
...
* 'datedetector-testcase' of https://github.com/kwirk/fail2ban :
Correct datedetector testcases for TAI64N format
Additional date/time formats for datedetector testcases
2013-03-22 20:27:39 -04:00
ec87e3edbd
TST: Break out server testcases that modify logging settings
2013-03-22 21:15:37 +00:00
99bf14851f
BF+TST: Introduce delay before stopping all jails in testStartStopAllJail. fixes #146
2013-03-22 09:20:21 -04:00
1330c7d4b8
Merge branch 'socket-testcase' of https://github.com/kwirk/fail2ban
...
* 'socket-testcase' of https://github.com/kwirk/fail2ban :
Update MANIFEST with and author of testcases/sockettestcase.py
Added testcase for csocket and asyncserver
2013-03-17 10:10:11 -04:00
43b8a66482
Update MANIFEST with and author of testcases/sockettestcase.py
2013-03-17 09:18:14 +00:00
86d48a854f
Correct datedetector testcases for TAI64N format
2013-03-16 18:18:27 +00:00
883892a683
Additional date/time formats for datedetector testcases
...
Also made a note that some workarounds for certain date/time formats
may cause week/year day to be incorrect. This does not affect
functionality of fail2ban so no urgency to fix.
2013-03-16 17:55:22 +00:00
d4362859ef
Added testcase for csocket and asyncserver
2013-03-11 17:22:57 +00:00
4bbbc07872
Added additional Transmitter tests, and some associated fixes
...
This includes some tweaks such that errors are raised for certain
commands
2013-03-10 14:55:39 +00:00
3665e6dc44
Add development documentation and framework for code coverage measurement
2013-03-10 15:18:42 +11:00
b36835f6f0
Added transmitter get cinfo option for action
2013-02-20 23:33:39 +00:00
b6a68f5138
Fix for missing value in transmitter delaction
2013-02-20 23:24:46 +00:00
088e40c481
Rewrite and enable server testcase for Transmitter
2013-02-20 23:14:42 +00:00
ec3080cba5
Reincarnated removed (by mistake) test for SplitAction
2013-02-17 17:21:03 -05:00
2312b1d950
ENH: made log messages while parsing files more informative + test for inaccessible file (Closes: gh-24)
2013-02-17 17:19:09 -05:00
9ba27353b6
NF: allow customization configuration under corresponding .d directories (Closes gh-114)
...
Additional changes:
ENH: make basedir for Config's a kwarg to the constructor
ENH: improved analysis/reporting on presence/accessibility of config
files. Got carried away and forgot about existing work done by
Steven Hiscocks in the gh-115 -- will merge it in the next
commit for the fair ack of his work
Now for any X.conf configuration file we have following ways to
provide customizations
X.local -- read after .conf (kept for backward compatibility)
X.d/ -- directory to contain additional .conf files, sorted
alphabetically, e.g
X.d/01_enable.conf - to enable the jail
X.d/02_custom_port.conf - to change the port
X could be a 'jail' or 'fail2ban' or any other configuration file in
fail2ban.
Mention that all files still must contain the corresponding sections
(most of the time duplicating it across all of them).
2013-02-17 17:03:23 -05:00
5f2d3832f7
NF: roundcube-auth filter (to close Debian #699442 , needing debian/jail.conf section)
2013-01-31 14:41:34 -05:00
9a39292813
ENH: Added login authenticator failed regexp for exim filter
2013-01-04 15:23:05 -05:00
21e966e4bb
example logs should carry the same name as the filter they are devised for
2012-12-13 08:24:02 -05:00
123d457924
Update testcases/files/logs/Webmin
2012-12-13 08:33:07 +01:00
38dd1506cc
Sample Webmin logs
2012-12-12 23:25:31 -08:00
68c1defb76
ENH: added dovecot example from Daniel Black + example with DoS attempt via injected rhost
2012-12-12 09:16:27 -05:00
6d804df504
Merge branch 'patch-2' of https://github.com/hamilton5/fail2ban (dovecot log examples)
...
* 'patch-2' of https://github.com/hamilton5/fail2ban :
Update testcases/files/logs/dovecot
Update testcases/files/logs/dovecot
2012-12-12 09:11:34 -05:00
ccc62ddbf3
Update testcases/files/logs/dovecot
2012-12-11 12:05:01 -05:00
67145d8b78
ENH: assure that all date templates have unique names
2012-12-11 11:18:52 -05:00
2b6366656f
BF: make sorting of date templates stable
...
Before, it would first do stable sort followed with explicit reverse.
Now reverse is given as an argument to sort, and it results in actually
preserving the order in case of e.g. no sorting needed
2012-12-11 11:18:52 -05:00
c534c1d03d
Update testcases/files/logs/dovecot
2012-12-11 11:05:22 -05:00
fc27e00290
ENH: tune up sshd-ddos to use common.conf and allow training spaces
2012-12-07 15:24:34 -05:00
37a2e59d69
BF: guarantee that IP is stored as a base, non-unicode str (Closes gh-91)
...
Otherwise it might lead to spurious characters dumped into the
terminal at few places, unless casted upon every use in the logs. To
prevent those issues in the source, store IP as a basic string if it
is a string at all
2012-11-26 12:01:42 -05:00
f10537941b
ENH: To help with gh-87 added hints into the log on some failure return codes (e.g. 0x7f00 for this one)
2012-11-07 11:33:17 -05:00
1e12c220e6
minor: added a note on now "negative" log entries on "POSSIBLE BREAK-IN ATTEMPT"
2012-11-05 21:22:33 -05:00
5becaf8ef2
BF: (python 2.[45]) store backends names in a list to use .index later on (Closes gh-83)
...
.index() got into tuple's API only in 2.6
2012-11-01 15:34:20 -04:00
958a1b0a40
Lighttpd: support auth.backend = "htdigest"
2012-09-30 13:27:21 +02:00
2082fee7b1
ENH: match possibly present "pam_unix(sshd:auth):" portion for sshd ( Closes : #648020 )
2012-07-31 15:53:41 -04:00
6ad55f64b3
ENH: add wu-ftpd failregex for use against syslog ( Closes : #514239 )
2012-07-31 15:43:13 -04:00
337f3f6f7b
ENH: 1 more sleep_4_poll to guarantee difference in time stamp
2012-07-19 23:07:08 -04:00
e9964846fa
ENH: few more delays for cases relying on time stamps
2012-07-19 21:41:04 -04:00
a1a67d34a9
ENH: tests much more robust now across pythons 2.4 -- 2.7
...
* needed additional sleeps for polling filter since that one relies on
time-stamps and too rapid changes would not be caught by the
PollFilter
* in python 2.4, time stamps are up to a second (int's) so sleeps longer
* test_new_bogus_file -- just to make sure that addition of new files
does not alter our monitoring
2012-07-19 17:29:12 -04:00
6ac9fd5d26
ENH: Filter's testcases -- rename, del + list again --- a bit unstable, might still fail from time to time
2012-07-19 13:30:01 -04:00
60260bce3d
ENH: first working unittest for checking polling and inotify backends
2012-07-19 01:14:55 -04:00
0b842272e3
ENH: extended test LogfileMonitor
2012-07-18 10:26:42 -04:00
398cc73d3d
Added few tests of FileFilter. yet to place them into a Jail-ed execution test
...
At the moment they are, despite being provided different backends,
pretty much test FileFilter functionality.
2012-06-30 00:35:08 -04:00
215c3cc5c5
ENH: added a basic test for FilterPoll for detection of modifications
...
The test class MonitorFailures is intended to be excercised for all
Filter*'s, i.e. backends. It is just atm it is useful only for Poll
2012-06-29 12:56:32 -04:00
Daniel Black