Daniel Black
504111b0b1
ENH: filter.d/recidive - anchor regex at start and support f2b SYSLOG target
2013-09-16 01:22:42 +10:00
Yaroslav Halchenko
f1adf75b59
ENH: basic testing for iso8601 code which had no explicit tests + spit out ValueError for incorrect type of input and ParseError otherwise
2013-09-12 23:12:18 -04:00
Daniel Black
317e82e144
TST: one more exim test case
2013-09-02 17:10:49 +10:00
Yaroslav Halchenko
cd100ce274
Merge pull request #342 from grooverdan/datedetector_test
...
TST: improve datedetector error reporting
2013-08-31 06:53:59 -07:00
Daniel Black
6b0e2289d4
Merge pull request #335 from grooverdan/gh-333-bind
...
ENH: filter.d/named-refused.conf - BIND 9.9.3 regex changes. Closes gh-333
2013-08-30 21:34:22 -07:00
Daniel Black
2acaef9d89
TST: more detail in assertion
2013-08-29 09:17:13 +10:00
Daniel Black
f2a60daea1
TST/BF: assertIsNotNone replaced with assertNotEqual for python 2.4 compatibility
2013-08-28 12:55:21 +10:00
Daniel Black
13b4f176ab
TST: improve datedetector error reporting
2013-08-28 12:41:20 +10:00
Daniel Black
cbed57bffd
TST: fix year in named-bind test case
2013-08-28 08:52:56 +10:00
Daniel Black
a401d11644
ENH: add regex for bad zone transfer request/ TST: add test for bind-9.9 zone transfer denied
2013-08-28 00:53:08 +10:00
Yaroslav Halchenko
265a85ec1f
RF: do not catch for now "invalid nonce \S* received - hash is not \S*" -- imho needs more analysis
2013-08-26 09:48:56 -04:00
François Boulogne
e133b9f1d1
MAINT: add support for lightty1.4.31
2013-08-25 21:29:43 +02:00
Daniel Black
ca4729e943
ENH: filter.d/exim.conf - add authentication failures for "plain" authentication
2013-08-25 23:02:10 +10:00
Daniel Black
ef903db3c9
ENH: filter.d/named-refused.conf - BIND 9.9.3 regex changes. Closes gh-333
2013-08-25 22:44:30 +10:00
Daniel Black
cfb7dba268
DOC: merge ChangeLog
2013-08-25 21:26:13 +10:00
Daniel Black
b589533d69
Merge branch 'master' into kwirk-merge
...
Conflicts:
ChangeLog
testcases/files/logs/dropbear
2013-08-25 21:21:14 +10:00
Daniel Black
62c13c15d6
TST: reorder and condense error message for Multiple regexs matched
2013-08-25 21:02:30 +10:00
Daniel Black
9a1df3501b
TST: display details of duplicate matches
2013-08-25 20:19:42 +10:00
Daniel Black
cb61fcd326
TST: standardise output format on Time mismatch test
2013-08-25 18:11:54 +10:00
Daniel Black
8e467437b2
TST: fix year on asctime
2013-08-25 18:09:39 +10:00
Yaroslav Halchenko
c84a2e595a
ENH(BF): put 'standard' template after more detailed ones with day of week and year
...
otherwise years present in the freshly contributed by Dan apache regexes do not match
although should have. I had also to adjust failing now vsftpd test
2013-08-25 17:52:12 +10:00
Daniel Black
21914d155e
TST: add failJSON data
2013-08-25 17:49:09 +10:00
Daniel Black
1d9702be32
TST: datetime mismatch to show error line
2013-08-25 17:34:36 +10:00
Daniel Black
0204cec5ce
TST: www.example.com DNS changed
2013-08-25 17:06:10 +10:00
Daniel Black
a9eb8a76c6
merge of change log and apache-auth differences
2013-08-25 16:51:35 +10:00
Steven Hiscocks
53d8a46e8a
Merge pull request #7 from grooverdan/gh-303-merge
...
Gh 303 merge
2013-08-21 12:20:48 -07:00
Daniel Black
ed42b08789
TST: merge dropbear log samples
2013-08-19 21:25:33 +10:00
Daniel Black
61d43608ae
ENH: filter.d/postfix - add filter for VRFY. Closes gh-322
2013-08-19 18:42:39 +10:00
Daniel Black
4f39d2b1fd
TST: fix failJson year
2013-08-18 23:04:53 +10:00
Daniel Black
444e989dd5
TST: another zone transfer refused example for file named-refused
2013-08-18 22:49:59 +10:00
Daniel Black
5d451bc4d6
ENH: add refused zone tranfer to named-refused filter. closes #323
2013-08-18 22:19:31 +10:00
Yaroslav Halchenko
2aa8ddea4d
BF: fixed up conditioning of tests under cygwin (still 3 fail)
2013-08-08 22:58:06 -04:00
Yaroslav Halchenko
511e0ace2e
TST: Even more of conditioning of tests for cygwin
2013-08-08 22:35:07 -04:00
Yaroslav Halchenko
e4dad8dfc9
TST: SYSLOG present only on Linuxes thus do not test if not Linux
2013-08-08 22:00:17 -04:00
Yaroslav Halchenko
e7d5e466b9
Merge branch 'enh/asterisk_and_dropbear_filters'
...
* enh/asterisk_and_dropbear_filters:
ENH: hardened added dropbear failregex to avoid trailing .* and enclose username in ''
minor: consistent indentation in dropbear.conf
https://github.com/fail2ban/fail2ban/issues/306
fail2ban-users: Sebastian Arcus - Detect device auth failures on Asterisk 11
2013-08-08 09:59:24 -04:00
Yaroslav Halchenko
547c123cfb
BF: example.com is pointing to another IP now. Closes #313
...
This is a permanent change according to private correspondence with
David Closson @ IANN, thus replaced 192.0.43.10 with updated IP
93.184.216.119, while leaving 192.0.43.10 as is in the sample log
files (it is still within IANN dedicated testing network).
2013-08-07 22:56:57 -04:00
Daniel Black
c0a2e50559
TST: apache auth - opaque value
2013-08-06 17:13:09 +10:00
Daniel Black
7b2773889d
TST: apache-auth filter - nonce timetravel tests + other expression fixes
2013-07-29 02:29:04 +10:00
Daniel Black
52aaa1c9bb
TST: bad include of vim swap files
2013-07-28 22:01:51 +10:00
Daniel Black
0fb04cb2f0
ENH: filter enhancements on mod-digest (with test cases) for apache-auth (httpd-2.4.4)
2013-07-28 22:00:55 +10:00
Steven Hiscocks
1e270078b4
TST: Warn if date templates overlap in default detectors
2013-07-27 20:21:05 +01:00
Jamyn Shanley
a355fab91b
https://github.com/fail2ban/fail2ban/issues/306
...
Fix regex for latest dropbear (keep backwards compatibility). Add test case logfiles.
Signed-off-by: Jamyn Shanley <jshanley@gmail.com>
2013-07-27 03:43:32 +00:00
Jamyn Shanley
8936f2cd02
fail2ban-users: Sebastian Arcus - Detect device auth failures on Asterisk 11
2013-07-27 00:06:06 +00:00
Steven Hiscocks
bf021ebd97
TST: Mandate that all filters and each regex has sample log entry
2013-07-26 17:05:17 +01:00
Steven Hiscocks
1c7d28d1ea
TST: Add qmail sample log
2013-07-26 17:03:14 +01:00
Steven Hiscocks
5437f5fe90
TST: Add gssftpd sample log
2013-07-26 17:02:53 +01:00
Steven Hiscocks
f7d8e68738
TST: Add apache-badbots sample log
2013-07-26 12:32:29 +01:00
Yaroslav Halchenko
1721991755
Merge pull request #304 from yarikoptic/master
...
RF(ENH): JailsReader.getOptions -- avoid code duplication when asking for 1 jail or all
upon @kwirk blessing ;)
2013-07-25 18:45:10 -07:00
Yaroslav Halchenko
3b52eca608
ENH+TST: Ticket -- drop unused/bogus get|setFile + enh __str__ + basic testing
2013-07-22 12:09:33 -04:00
Yaroslav Halchenko
149a83545f
TST: basic test for reading of a bogus jail
2013-07-22 11:52:51 -04:00