fail2ban

Commit Graph

Author	SHA1	Message	Date
Yaroslav Halchenko	8487cb2e90	Merge commit '0.8.10-31-g1ab0f0f' into 0.9 * commit '0.8.10-31-g1ab0f0f': (24 commits) BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address ENH: readibility thanks to Yaroslav DOC: Changelog for fail2ban-regex RF DOC: Changelog for asterisk hardening ENH: fail2ban-regex -- add specification of loglevels to enable RF: reworked -regex cmdline tool to use optparse, some unification and enhancement of outputs ENH: 'heavydebug' level == 5 for even more debugging in tricky cases ENH: asterisk -- use \S instead of [^:] + prefix failregex with ^\[ BF: missed a space BF: [SSL-out] is optional in assp ENH: regex hardening on assp ENH: anchor a bit mor. Use \d and \w where possible. Escape a literal . TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15 ENH: proftpd chan accept usernames with spaces ENH: injection of fail data into USER field ENH: dovecot regexs rewritten and extra failures ENH: proftp regex hardening and log messages ENH/BF: exim improvements with sample BF: fix to proxy port in 3proxy example ENH: sample log + more specific regex ... Conflicts: -- it was a messy merge/resolution. ChangeLog bin/fail2ban-regex fail2ban-testcases fail2ban/server/filter.py	12 years ago
Steven Hiscocks	9b8eaa90ef	ENH: Reorder date regex and remove duplicate ISO8601 format	12 years ago
Yaroslav Halchenko	1ab0f0f9e3	Merge branch 'master' of https://github.com/yarikoptic/fail2ban * 'master' of https://github.com/yarikoptic/fail2ban: DOC: Changelog for fail2ban-regex RF ENH: fail2ban-regex -- add specification of loglevels to enable RF: reworked -regex cmdline tool to use optparse, some unification and enhancement of outputs ENH: 'heavydebug' level == 5 for even more debugging in tricky cases Conflicts: ChangeLog	12 years ago
Daniel Black	25c3bbfc2f	DOC: credits/blame to me for changes to exim	12 years ago
Daniel Black	b8cfda68b8	ENH: new exim filter regexs. Also note a begining PID in this format. Thanks to ftoppi for the log entries	12 years ago
Daniel Black	ee786671aa	DOC: developing filters without DoS	12 years ago
Daniel Black	d441d61a1e	TST/ENH: Improve regex around exim rejected by local_scan now has test cases. Unrouteable address error messages now normalised after looking into exim code.	12 years ago
Yaroslav Halchenko	9d4b613ee4	Merge branch '3proxy' of https://github.com/grooverdan/fail2ban * '3proxy' of https://github.com/grooverdan/fail2ban: BF: fix to proxy port in 3proxy example ENH: sample log + more specific regex BF: authentication errors end in 01-09 but the beginning part indicates the service as per https://github.com/fail2ban/fail2ban/issues/246#issuecomment-19327955 thanks to ykimon BF: need to anchor the start to avoid another repeat of DoS injection like Apache ENH: stricter regex thanks to Steven Hiscocks (kwirk) DOC: credits Conflicts: ChangeLog	12 years ago
Yaroslav Halchenko	173fe48e77	Merge branch 'exim' of https://github.com/grooverdan/fail2ban * 'exim' of https://github.com/grooverdan/fail2ban: BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address ENH: readibility thanks to Yaroslav ENH/BF: exim improvements with sample Conflicts: ChangeLog	12 years ago
Yaroslav Halchenko	ec629ab4e8	Merge branch 'proftpd' of https://github.com/grooverdan/fail2ban * 'proftpd' of https://github.com/grooverdan/fail2ban: ENH: proftpd chan accept usernames with spaces ENH: injection of fail data into USER field ENH: proftp regex hardening and log messages Conflicts: ChangeLog	12 years ago
Yaroslav Halchenko	ab2c738b43	Merge branch 'dovecot' of https://github.com/grooverdan/fail2ban * 'dovecot' of https://github.com/grooverdan/fail2ban: TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15 ENH: dovecot regexs rewritten and extra failures Conflicts: ChangeLog -- merged entries	12 years ago
Daniel Black	8cc13b5b40	BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address	12 years ago
Daniel Black	a433a8ea5f	ENH: readibility thanks to Yaroslav	12 years ago
Yaroslav Halchenko	948be73115	Merge branch 'assp' of https://github.com/grooverdan/fail2ban * 'assp' of https://github.com/grooverdan/fail2ban: BF: missed a space BF: [SSL-out] is optional in assp ENH: regex hardening on assp Conflicts: ChangeLog -- merged the two entries into 1	12 years ago
Yaroslav Halchenko	77044fce35	DOC: Changelog for fail2ban-regex RF	12 years ago
Yaroslav Halchenko	9b351350dd	DOC: Changelog for asterisk hardening	12 years ago
Yaroslav Halchenko	e91419d361	ENH: fail2ban-regex -- add specification of loglevels to enable	12 years ago
Yaroslav Halchenko	ffe381d91c	RF: reworked -regex cmdline tool to use optparse, some unification and enhancement of outputs	12 years ago
Yaroslav Halchenko	97f9cfc0b0	ENH: 'heavydebug' level == 5 for even more debugging in tricky cases I mocked logging library directly -- seems to be Ok.	12 years ago
Yaroslav Halchenko	09302c5c25	ENH: asterisk -- use \S instead of [^:] + prefix failregex with ^\[ detected date portion is stripped from the string to be matched, so it is not only the right ] is left, but also the left one ;-)	12 years ago
Daniel Black	7018d81244	BF: missed a space	12 years ago
Daniel Black	a447aa615d	BF: [SSL-out] is optional in assp	12 years ago
Daniel Black	d4940563d3	ENH: regex hardening on assp	12 years ago
Daniel Black	6a09ecff5c	ENH: anchor a bit mor. Use \d and \w where possible. Escape a literal .	12 years ago
Daniel Black	e8b6acfa65	TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15	12 years ago
Daniel Black	9940cd1b6b	ENH: proftpd chan accept usernames with spaces	12 years ago
Daniel Black	2e2ec5d1f5	ENH: injection of fail data into USER field	12 years ago
Daniel Black	dbe7ffe050	ENH: dovecot regexs rewritten and extra failures	12 years ago
Daniel Black	4c67a269bf	ENH: proftp regex hardening and log messages	12 years ago
Daniel Black	3e3802512a	ENH/BF: exim improvements with sample	12 years ago
Daniel Black	88b4598ed8	BF: fix to proxy port in 3proxy example	12 years ago
Yaroslav Halchenko	f6cb981fc0	Merge commit '0.8.10-1-g460e09a' into 0.9 * commit '0.8.10-1-g460e09a': it was not the end of the world and we should continue DOC: add information on where to report vulnerabilities + pointer to HOWTO_Seek_Help Changes for 0.8.10 release (changelog, version, etc) BF: anchor apache- filters. Close #248 DOC: credits for gh-244 Filter Asterisk: Add sample log entry to testcase. Filter Asterisk: Add AUTH_UNKNOWN_DOMAIN error to list ENH: purge a few more .* DOC: credits DOC: how to do filter enhancements TST: normalize logs to use example.com and 1.2.3.4 as IP ENH/BF: constrain regex. Fix ACL error regex ENH: port optional Update asterisk Update asterisk.conf Conflicts: ChangeLog DEVELOP README.md fail2ban/version.py	12 years ago
Yaroslav Halchenko	460e09af66	it was not the end of the world and we should continue	12 years ago
Daniel Black	9dbaec0894	ENH: sample log + more specific regex	12 years ago
Daniel Black	8faf84b7f7	BF: authentication errors end in 01-09 but the beginning part indicates the service as per https://github.com/fail2ban/fail2ban/issues/246#issuecomment-19327955 thanks to ykimon	12 years ago
Yaroslav Halchenko	921d9a8e4b	DOC: add information on where to report vulnerabilities + pointer to HOWTO_Seek_Help originally following command was used to add header to all config files: sed -ie '/# Author/ i\# Please report vulnerabilities to fail2ban-vulnerabilities at lists dot sourceforge dot net\n# and see http://www.fail2ban.org/wiki/index.php/HOWTO_Seek_Help for generic bug-reports.\n#' action.d/* filter.d/* but it would be overkill ATM causing havoc in user-tuned configs -- postponed for now Also adjusted the release date for today (by mistake in 1 commit ... sorry)	12 years ago
Yaroslav Halchenko	728b5e8bf4	Changes for 0.8.10 release (changelog, version, etc)	12 years ago
Yaroslav Halchenko	6ccd57813c	BF: anchor apache- filters. Close #248 See https://vndh.net/note:fail2ban-089-denial-service for more information	12 years ago
Daniel Black	fd9f9f16e0	BF: need to anchor the start to avoid another repeat of DoS injection like Apache	12 years ago
Daniel Black	f2fa4d53a8	ENH: stricter regex thanks to Steven Hiscocks (kwirk)	12 years ago
Daniel Black	16d63434ef	DOC: credits	12 years ago
Daniel Black	4787777cee	DOC: credits for gh-244	12 years ago
Daniel Black	66d8210f80	Merge pull request #244 from clopez/filter-asterisk Filter Asterisk: Add AUTH_UNKNOWN_DOMAIN error to list	12 years ago
Carlos Alberto Lopez Perez	7248ef4564	Filter Asterisk: Add sample log entry to testcase. * Sample log entry for AUTH_UNKNOWN_DOMAIN (Not a local domain)	12 years ago
Carlos Alberto Lopez Perez	47b063b022	Filter Asterisk: Add AUTH_UNKNOWN_DOMAIN error to list * I have been seeing bruteforcing attempts where asterisk fails with AUTH_UNKNOWN_DOMAIN (Not a local domain)	12 years ago
JP Espinosa	32b271c36e	Update redhat-initd - Using `-x` to remove previous socket on start - Using Should- to wait for iptables and wrappers	12 years ago
JP Espinosa	3736d7ddbf	Rewrite to use native init.d functions - There was a bug with the old "getpid" function, when running linux containers you can see multiple fail2ban instances on hardware node and could stop one on a random virtual environment - Added reload and status options	12 years ago
Yaroslav Halchenko	b53612cb10	Merge pull request #237 from grooverdan/asterisk-227 Asterisk enhancements	12 years ago
Daniel Black	05c88bd85d	ENH: purge a few more .*	12 years ago
Daniel Black	28fc14d010	DOC: credits	12 years ago

... 16 17 18 19 20 ...

2237 Commits (58ebf659e4a980475b32472313fcc9322619da4c) All Branches Search

2237 Commits (58ebf659e4a980475b32472313fcc9322619da4c)

All Branches