Yaroslav Halchenko
46cfc2bbd6
added example for "refused connect"
2007-11-23 09:00:08 -05:00
Yaroslav Halchenko
8d9aca4e20
* Fixed named-refused filter.
2007-10-16 17:02:35 -04:00
Yaroslav Halchenko
0012f9ff92
* (NOT RELEASED YET) New upstream release.
...
Patches absorbed upstream:
00_daemon_pids.dpatch
00_iptables_allports.dpatch
00_vsftp_filter_spaces.dpatch
00_resolve_all_names.dpatch
00_HOST_ignoreregex.dpatch
Patches which needed some tune-up:
00_ssh_strong_re.dpatch
00_mail-whois-lines.dpatch
00_named_refused.dpatch
2007-10-16 17:02:35 -04:00
Yaroslav Halchenko
85b75c77fb
* Resolve all "names" which became a part of <HOST>. Previousely only fqdn's
...
were resolved
2007-08-13 21:13:59 +00:00
Yaroslav Halchenko
c5202ce696
* Added optional spaces at the end of failregex for vsftpd.
2007-08-06 01:39:30 +00:00
Yaroslav Halchenko
58ae2a5a75
* Added new time template matching named log entries
2007-07-30 02:31:35 +00:00
Yaroslav Halchenko
95d17ee318
* Adjusted failregex for sshd filter:
...
- anchored properly at the end of line, and source code has .examples
files to perform testing of the rules.
- added new explicit rule for users not in the AllowUsers lists
2007-07-29 17:20:23 +00:00
Yaroslav Halchenko
ac7e1696d4
fixed named filter to account for optional (cache)
2007-07-24 20:04:20 +00:00
Yaroslav Halchenko
14d3ffc6de
* Added a filter for named to catch refused/denied queries
2007-07-24 18:10:05 +00:00
Yaroslav Halchenko
2a3d710cad
adjusted pam_generic patch in example to catch ftp
2007-07-24 17:25:38 +00:00
Yaroslav Halchenko
d63bea24f5
tuned pam_generic to catch some weird log lines
2007-07-21 02:29:45 +00:00
Yaroslav Halchenko
a843d0da04
tuned pam_generic to catch some weird log lines
2007-07-21 02:27:30 +00:00
Yaroslav Halchenko
f58421eabf
* Use /var/run to keep socket file ( closes : #425746 )
2007-07-05 17:12:17 +00:00
Yaroslav Halchenko
2e55bc57c7
* Added a filter pam_generic to catch any login errors.
...
* Added iptables-allports.
2007-06-25 16:51:05 +00:00
Yaroslav Halchenko
bc0806d459
* Moved <HOST> expansion into regex.py ( closes : #429263 ). Thanks James
...
Andrewartha.
* Added optional regexp entry for process PID in some entries (closes:
#426050 ). Thanks Roderick Schertler.
2007-06-21 01:47:02 +00:00
Yaroslav Halchenko
d15f9d0206
* New upstream release
...
* Updated copyright to include current year
* Removed patches absorbed upstream
2007-04-20 01:44:43 +00:00
Yaroslav Halchenko
7c30a3097b
* Applied post-release upstream changes to resolve issues with
...
- Close opened handlers to log file
- Fixed "reload" bug
2007-03-26 21:47:10 +00:00
Yaroslav Halchenko
dc21820c80
adjusted paths in patches
2007-03-24 22:40:42 +00:00
Yaroslav Halchenko
d345865621
* New upstream release
...
* Applied post-release changes to resolve issues with gamin and not closed
on reload log file
2007-03-24 22:27:09 +00:00
Yaroslav Halchenko
ee3f91176c
* New upstream release (included most of the debian-provided patches -- new
...
filters and actions)
* Refreshed and made verbatim homepage in description
2007-02-09 03:22:15 +00:00
Yaroslav Halchenko
936fee7c40
* Use /usr/bin/python interpreter instead of wrapped call to python by
...
/usr/bin/env
2007-01-19 16:08:10 +00:00
Yaroslav Halchenko
30eb0566bd
making it using /usr/bin/python directly
2007-01-19 15:56:21 +00:00
Yaroslav Halchenko
f92e887994
minor more changes
2007-01-19 15:53:21 +00:00
Yaroslav Halchenko
878fa0dedd
* Synchronized action.d/iptables-* rules from upstream SVN (closes:
...
#407561 )
* Minor: options renames in the comments to be in sync with upstream
2007-01-19 15:51:11 +00:00
Yaroslav Halchenko
7fa686a7f2
* New upstream release, which incorporates fixes introduced in 3~pre
...
non-released versions (which were suggested to the users to overcome
problems reported in bug reports). In particular attention should be paid
to upstream changelog entries
- Several "failregex" and "ignoreregex" are now accepted.
Creation of rules should be easier now.
This is an alternative solution to 'multiple <HOST>' entries fix,
which is not applied to this shipped version - pay cautios if upgrading
from 0.7.5-3~pre?
- Allow comma in action options. The value of the option must
be escaped with " or '.
That allowed to implement requested ability to ban multiple ports
at once (See 373592). README.Debian and jail.conf adjusted to reflect
possible use of iptables-mport
- Now Fail2ban goes in /usr/share/fail2ban instead of
/usr/lib/fail2ban. This is more compliant with FHS.
Patch 00_share_insteadof_lib no longer applied
* Refactored installed by debian package jail.conf:
- Added option banaction which is to incorporate banning agent
(usually some flavor of iptables rule), which can then be easily
overriden globally or per section
- Multiple actions are defined as action_* to serve as shortcuts
2007-01-04 18:08:09 +00:00
Yaroslav Halchenko
97ab74de5f
* Not applying patch any more for rigid python2.4 - it is default now in
...
sid/etch
2007-01-03 16:09:01 +00:00
Yaroslav Halchenko
4d5ec804f5
* Added filter ssh-ddos to fight DDOS attacks. Must be used with caution if
...
there is a possibility of clients accessing through unreliable connection
(Closes : #404487 )
2006-12-28 07:28:53 +00:00
Yaroslav Halchenko
ebc5c6106f
HOSTisized vsftpd regex
2006-12-22 18:39:57 +00:00
Yaroslav Halchenko
caf85bf265
* Made fail2ban-server tollerate multiple <HOST> entries in failregex
2006-12-22 18:36:01 +00:00
Yaroslav Halchenko
ae96eaa40c
made failregex universal for both PAM and native vsftpd logging
2006-12-22 04:54:14 +00:00
Yaroslav Halchenko
2e992c2353
* Fail2ban now bans vsftpd logins (corrected logfile path and failregex)
...
(Closes : #404060 )
2006-12-21 16:54:39 +00:00
Yaroslav Halchenko
762d1a188a
* NEWS.Debian confusions - the latest NEWS entry and postinst message were
...
rephrased (Closes : #402350 )
* Added mail-whois-lines action, which emails log lines containing abuser
IP. Those lines are often required for proper abuse reports sent to the
Internet providers. Forwarding of such received emails to the email
addresses of abuse departments present in the output of whois is a
tentative solution for semi-automatic abuse reporting (Closes : #358810 )
2006-12-10 23:40:04 +00:00
Yaroslav Halchenko
ae58ed091a
* Removed obsolete patches left from 0.6
...
* Adjusted wsftpd patch to use <HOST> tag to be in line with the other
filter definitions
2006-12-08 02:28:07 +00:00
Yaroslav Halchenko
1755dc2b0a
updated the patch to the most recent release
2006-12-08 02:12:22 +00:00
Yaroslav Halchenko
24ada3c63e
* Only block new connects by using a new action iptables-new instead of
...
iptables (Closes : #350746 )
* Updated README.Debian to reflect transition over to 0.7 branch and to
comment on 350746
2006-11-11 00:10:10 +00:00
Yaroslav Halchenko
1e4d6dd059
* debian/{rules,control} adjusted to conform all points in recent python
...
policy changes
* install under /usr/share instead of /usr/lib
2006-10-23 05:07:52 +00:00
Yaroslav Halchenko
37d2abc8ea
* Currrent snapshot of trunk
...
* Removed outdated (applied in 0.7.4 or specific for 0.6.?) patches
from debian/patches
2006-10-23 04:45:34 +00:00
Yaroslav Halchenko
923d2214d9
added wuftpd to both 0.6 and 0.7
2006-10-18 05:15:53 +00:00
Yaroslav Halchenko
cd46343d11
added few sections (patches + adjusted jail.conf shipped with Debian)
2006-09-29 04:21:16 +00:00
Yaroslav Halchenko
641cd14a40
preliminary packaging of 0.7.3 which gets closer to be used widely, i.e.
...
could be uploaded to experimental
2006-09-29 04:05:50 +00:00
Yaroslav Halchenko
4ba8572d7f
adjusted the bantime to be 10min not 10sec
2006-09-05 15:26:37 +00:00
Yaroslav Halchenko
dae225330c
added debian specific patches for the new upstream
2006-09-05 15:16:03 +00:00
Yaroslav Halchenko
a4899fabf8
Initial minimalistic but working packaging of fail2ban 0.7.1
2006-09-05 06:10:29 +00:00
Yaroslav Halchenko
d125070fa4
now changes in this file are managed via dpatch
2006-08-15 22:13:44 +00:00
Yaroslav Halchenko
6e050675a8
adjusted manpage for fail2ban.conf
2006-08-15 21:35:37 +00:00
Yaroslav Halchenko
ed6a45f1a6
added verbosity patch from one of my branches. fixed stupid indents
2006-07-04 03:40:14 +00:00
Yaroslav Halchenko
1f3e33e384
added verbosity patch from one of my branches
2006-07-04 03:36:39 +00:00
Yaroslav Halchenko
f7064d36c5
fixed empty ip and somewhat fixed locale issue
2006-07-04 03:03:45 +00:00
Yaroslav Halchenko
7b93d4ded5
section for saslauthd
2006-05-30 14:19:08 +00:00
Yaroslav Halchenko
2f930dfa76
now apache2 bug gets closed
2006-05-28 03:32:24 +00:00