sebres
dab5f56609
Merge branch 'fix-gh-1477'
8 years ago
sebres
c8b036456d
changelog entries
8 years ago
sebres
519e355bf2
ChangeLog entry added
8 years ago
sebres
53adc9d84a
Merge branch 0.10-full with 0.10
...
Resolved several conflicts and code review after merge
8 years ago
sebres
c809c3e61e
Merge branch 'master' into 0.10
8 years ago
Nils
f7df6026a3
Update Changelog to reflect the new np.conf action
8 years ago
sebres
310d4e224d
Merge branch master (0.9) into 0.10
8 years ago
Serg G. Brester
8e3e333d54
Update ChangeLog
8 years ago
sebres
5151c4fa6d
ChangeLog entries added
8 years ago
sebres
0f1d1a0d4d
ChangeLog: FIPS compliant
8 years ago
sebres
9fb167b5e1
filter.d/vsftpd.conf: optional reason message after FAIL LOGIN, closes #1543
8 years ago
sebres
387aa6ba47
Merge master branch '_0.9/systemd-journal-path-gh-1408' into 0.10
...
# Conflicts:
# fail2ban/tests/filtertestcase.py
# fail2ban/tests/utils.py
8 years ago
sebres
c0e0cfb39d
Merge remote-tracking branch 'remotes/gh-upstream/master' into 0.10
8 years ago
sebres
7ed6cab120
jail configuration extended with new syntax to pass options to the backend (see gh-1408),
...
examples:
- `backend = systemd[journalpath=/run/log/journal/machine-1]`
- `backend = systemd[journalfiles="/run/log/journal/machine-1/system.journal, /run/log/journal/machine-1/user.journal"]`
- `backend = systemd[journalflags=2]`
8 years ago
sebres
4a1d720344
filter.d/asterisk.conf: another part ` chan_sip.c:28468 handle_request_register:` in log prefix
8 years ago
sebres
2c54f90469
sshd-filter: better universal regexp, that matches more complex different injects, using conditional expressions (on username and auth-info section), see new test cases also.
8 years ago
sebres
a544c5abac
sshd-filter: recognized "Failed publickey for" now (gh-1477) + improved regexp (not anchored now to recognize all "Failed anything for ... from <HOST>"
...
ChangeLog entry added
8 years ago
sebres
18ebd9ac21
Merge branches 0.10-full and 0.10
8 years ago
sebres
5509ba37a2
Merge pull request #1512 from 'remotes/gh-upstream/0.9' into 0.10
8 years ago
sebres
9935cf19c1
description provided, ChangeLog entries added
8 years ago
sebres
d71a525a85
Merge branch 'master' into 0.10 (resolve conflicts and cleaning tree points after back-porting gh-1508 0.10 -> 0.9)
8 years ago
sebres
cb340db220
ChangeLog entry for gh-1508
8 years ago
Yaroslav Halchenko
123f4ceaee
Changelog for postfix-sasl fix
8 years ago
sebres
70658d7a19
Merge pull request #1494 from rhardy613/master (branch 'sebres:pr-1494')
8 years ago
rhardy613
89f8999fe5
Add changelog entry for ASSP filter changes
...
Add changelog entry for ASSP filter changes
8 years ago
sebres
eb6e3c52ae
ChangeLog entries for the last fix (cherry pick from 0.10)
8 years ago
sebres
f5b7ffeb4b
DOC: Reformatted ChangeLog into legit Markdown (after merge of master to 0.10)
8 years ago
sebres
0eea362aa0
Merge branch 'master' into 0.10
8 years ago
sebres
922213f3d9
Merge tag '0.10.0a1' into 0.10-full
9 years ago
Yaroslav Halchenko
5714ac201b
DOC: preparations for 0.9.5 release
9 years ago
Yaroslav Halchenko
21056c995d
Merge remote-tracking branch 'origin/master' into doc-changelog
...
* origin/master:
another variant of regex
add trailing anchor to failregex
add PR id to ChangeLog
improved failregex according to @sebres recomendations
* add `__prefix_line` to regex * fix time in log file
add info to log file
added sample log lines for slapd
adding openldap slapd filter
9 years ago
Yaroslav Halchenko
28a0605f69
Merge pull request #1478 from gips0n/master
...
adding openldap slapd filter
9 years ago
sebres
683f8fc56c
Merge branch 'master' into 0.10
9 years ago
Yaroslav Halchenko
33ed71b3de
DOC: Reformatted ChangeLog into legit Markdown ( Closes #962 )
9 years ago
Yaroslav Halchenko
ec9c4a27f3
DOC: tuned up ChangeLog entries for 0.9.5
...
unified capitalized beginning of each entry
no trailing spaces or dots etc
9 years ago
Andrii Melnyk
2c5a489bc7
add PR id to ChangeLog
9 years ago
sebres
f5f204ca7c
Improved changes of gh-1458:
...
`[^']*` after callid was wrong, changed to `[^\)]*`;
regexp anchored at the end;
almost the same regex grouped to one;
Closes #1458
9 years ago
Andrii Melnyk
b2e3affaa0
adding openldap slapd filter
9 years ago
Yaroslav Halchenko
593b1210c0
Merge master (commit '0.9.4-79-gaf8b650') into 0.10
...
* commit '0.9.4-79-gaf8b650':
badip timeout option introduced, set to 30 seconds in our test cases (#1463 )
DOC: changelog for recent exim filters tune up
Asterisk pjsip (#1456 )
BF: finalize that sample log line for exim4
RF: for consistency use (?:XXX)? instead of (?:|XXX)
ENH: use non-capturing regex groups in exim-common and exim filters
ENH: exim filters -- make more use of %(host_info)s which in turn made more flexible
BF: make :port and I=[ip]:port optional for a "AUTH command used when not advertised"
9 years ago
sebres
12ff119841
Merge branch 'ban-time-incr' into 0.10-full
9 years ago
Yaroslav Halchenko
11f7cf5ad8
DOC: changelog for recent exim filters tune up
9 years ago
Ludovic Gasc
f85fb45b29
Asterisk pjsip ( #1456 )
...
* Improve PJSIP log support for Asterisk 13+
* Update changelog: filter.d/asterisk.conf - fix security log support for PJSIP and Asterisk 13+
* Change pjsip regexp with sebres observation, thanks to @nturcksin
9 years ago
sebres
f62266659f
Merge branch 'master' into '0.10'
9 years ago
sebres
baafac36a4
ChangeLog entry
9 years ago
sebres
34ae0b916e
Merge pull request #1421 from sebres/fix-1405
...
filter.d/common.conf: fixes unexpected extra regex-space in generic `__prefix_line` (gh-1405)
9 years ago
sebres
932708de9e
fixed --pidfile bug, introduced in gh-1322:
...
gentoo-initd fixed --pidfile bug: `--pidfile` is option of start-stop-daemon, not argument of fail2ban (see gh-1434)
closes gh-1434
9 years ago
sebres
de813acf51
extends generic `__prefix_line` with optional brackets for the date ambit (gh-1421), added new parameter `__date_ambit` + test case added;
9 years ago
sebres
3e49522b7a
fixes unexpected extra regex-space in generic `__prefix_line` (gh-1405, misleadingly committed in d2a9537568
);
...
all optional spaces normalized in generic include `common.conf` + test cases are extended (using new example pseudo-filter and test log `zzz-generic-example`);
9 years ago
sebres
cce63926ce
ChangeLog entry added
9 years ago
sebres
3df97beaa6
changelog entries from sebres:f2b-perfom-prepare-716 (gh-1346)
9 years ago
sebres
c22ba5413d
changes from ipv6-support-0.10 after merge
9 years ago
sebres
f9ea845595
Merge branch 'ipv6-support-0.10' into 0.10
9 years ago
Yaroslav Halchenko
5040c95bdb
DOC: stub for 0.10.0 release changelog
9 years ago
Alexander Koeppe
ce196744d1
Update ChangeLog / THANKS entries
9 years ago
sebres
e595fefc9b
change log and thanks entries
9 years ago
Serg G. Brester
b9b7ecbf6b
Merge pull request #1357 from sebres/monit-new-fltr
...
monit filter fixup for the new version (gh-1355)
9 years ago
TorontoMedia
3d239215cd
Two new firewalld actions with rich rules for firewalld-0.3.1+ (gh-1367)
...
closes #1367
9 years ago
sebres
ac27c9cb96
Merge branch 'patch-2' (gh-1371)
9 years ago
theDogOfPavlov
28e246b5d7
added note to cover additional exim filters
9 years ago
theDogOfPavlov
42f43d0f8a
added note to cover dovecot ldap regex
9 years ago
Yaroslav Halchenko
bfac42eb2e
changelog for journalmatch pure-ftpd
9 years ago
sebres
9d13bb0c3a
ChangeLog and THANKS entries
9 years ago
Yaroslav Halchenko
634e68036e
Get ready for further developments
9 years ago
Yaroslav Halchenko
5ffc15ac68
Changes for the 0.9.4 release
9 years ago
Yaroslav Halchenko
19850d71e9
changelog about gentoo initd
9 years ago
sebres
bf0adc1fdf
Merge remote-tracking branch 'f2b-perfom-prepare-716-cs' into ban-time-incr (+ conflicts resolved)
9 years ago
Yaroslav Halchenko
2adf5855ac
Changelog for the recent PR and added Tom to THANKS
9 years ago
sebres
667785b608
mysqld: failregex fixed (accepts different log level, more secure expression now);
...
closes #1332
9 years ago
Yaroslav Halchenko
905c87ca4a
Merge pull request #1310 from yarikoptic/pr-1288
...
NF: HAProxy HTTP Auth filter
9 years ago
Yaroslav Halchenko
3dc57af19c
Merge branch 'logrotate' of https://github.com/sbraz/fail2ban
...
* 'logrotate' of https://github.com/sbraz/fail2ban :
Remove compression and count from logrotate
9 years ago
3eBoP
257b7049d8
Update asterisk filter: changed regex for "Call from ...". Sometimes extension can have a plus symbol (+) because they can be phone number.
...
Closes #1309
9 years ago
Pierre GINDRAUD
b5a07741c8
Add new regex into postfix filter. The new regexp is able to detect bad formatted SMTP EHLO command
9 years ago
Louis Sautier
869d99dd37
Remove compression and count from logrotate
...
Initially reported at https://bugs.gentoo.org/show_bug.cgi?id=549856
9 years ago
Yaroslav Halchenko
3f437b32db
Merge remote-tracking branch 'pr/1288/head'
...
* pr/1288/head:
Update haproxy-http-auth.conf
Added HAProxy HTTP Auth filter
Conflicts:
config/jail.conf - resolved + removed unnecessary filter/enabled (defaults should be as good)
9 years ago
Yaroslav Halchenko
377ea32441
Merge pull request #1295 from obounaim/master
...
The sender option is ignored by some actions
9 years ago
Serg G. Brester
fe14c8fa05
Merge pull request #1292 from albel727/master
...
Add nftables actions
9 years ago
local
58a8736e0f
Updating changelog.
9 years ago
Alexander Belykh
cb2d70d7a8
Add ChangeLog entry for new nftables actions
9 years ago
sebres
25a09352e4
+ ChangeLog entry
9 years ago
Jordan Moeser
e133762a28
Added HAProxy HTTP Auth filter
9 years ago
Yaroslav Halchenko
69aa1feac0
Merge "Mac OS Screen Sharing filter" PR 1232
...
* pr/1232/head:
removed system.log
Removed old svn revision comment
removed false matches
Removed includes comment for screensharing jail
Now using a literal logpath for screensharing jail
Fixed blatant typo in regex
clarified comments on sample log format
Fixed name (again?)
Made screensharing jail off by default
Changed regex prequel
added entry for new screensharingd filter
name change & new sample data
Added json metadata
Sample log for test case
Replaced .* with literal
Update jail.conf
Added new path variable for system.log
Added in settings for screensharingd filter
Created file
Conflicts:
ChangeLog - moved to New Features
config/jail.conf - kept at the end
9 years ago
Yaroslav Halchenko
16710237e3
Merge remote-tracking branch 'origin/master'
...
* origin/master:
Add 'Sender address rejected: Domain not found' Postfix failregex
9 years ago
sebres
9d4f163e88
code review and minor repair after merge with performance branch (changed naming convention, wrong resolved conflicts, etc)
9 years ago
sebres
21f058a9f7
Merge remote-tracking branch 'remotes/gh-origin/f2b-perfom-prepare-716' into ban-time-incr
9 years ago
Yaroslav Halchenko
26dd6d7425
Merge pull request #1258 from aleksandrs-ledovskis/feature/postfix-domain-not-found-failregex
...
Add 'Sender address rejected: Domain not found' Postfix failregex
9 years ago
Yaroslav Halchenko
dfaf82d68a
Changelog entry for PartOf in .service fix
9 years ago
Ross Brown
8d12dba245
Merge remote-tracking branch 'upstream/master'
9 years ago
Ross Brown
16aa2fa13e
Updated ChangeLog to include new murmur jail.
9 years ago
Ross Brown
ba535826a8
Updated ChangeLog to include new murmur filter.
9 years ago
Yaroslav Halchenko
5d6cead996
ENH: sshd filter -- match new "maximum auth attempts exceeded" ( Closes #1269 )
9 years ago
sebres
6d984717b5
ordered dict replaced with dict + change log entry fix
...
# Conflicts:
# fail2ban/server/filter.py
9 years ago
sebres
3a179ec5d7
small code review: (much pretty) handling of filename as key - FileFilter contains (ordered) dict of files (not list), as discussed in gh-1265
9 years ago
Aleksandrs Ļedovskis
fa59a6850f
Add 'Sender address rejected: Domain not found' Postfix failregex
...
Signed-off-by: Aleksandrs Ļedovskis <aleksandrs@ledovskis.lv>
9 years ago
Orion Poplawski
c656cb0d36
Merge branch 'master' into journaldefault
...
Conflicts:
ChangeLog
9 years ago
Yaroslav Halchenko
6af6e40b62
Merge pull request #1241 from sebres/known/param-tag
...
New interpolation feature for definition config readers - `<known/parameter>`
9 years ago
sebres
46b116e86a
filter test cases improved + log captured inside such tests + python 3.x compatibility;
...
changelog entry;
9 years ago
sebres
94cffece12
New interpolation feature for definition config readers - `<known/parameter>`, as extension to interpolation `%(known/parameter)s`, that does not works for filter and action init parameters;
9 years ago
Serg G. Brester
eef7771b4e
Merge pull request #1238 from sebres/fix/gh-1216
...
Fixed directly defined banaction for allports jails like pam-generic, recidive, etc
9 years ago
sebres
e825e977cc
Nginx log paths extended (prefixed with "*" wildcard)
...
closes gh-1237
9 years ago
sebres
f359ed8c36
Fixed directly defined banaction for allports jails like pam-generic, recidive, etc with new default variable `banaction_allports` (+ man entries for both variables added);
...
closes gh-1216
9 years ago
sebres
6884593ab8
New filter `nginx-limit-req` ban hosts, that were failed through nginx by limit request processing rate (ngx_http_limit_req_module)
9 years ago
Orion Poplawski
0661aece46
Merge branch 'master' into journaldefault
...
Conflicts:
ChangeLog
9 years ago
Simon Brown
3dd1c305ce
added entry for new screensharingd filter
9 years ago
sebres
eb87638ead
ChangeLog entry for OpenHAB home automation filter (gh-1223)
9 years ago
Pablo Rodriguez Fernandez
2c576c64f8
Change domain filter regex
...
Change domain filter regex since there are other Google crawlers.
See "Google crawlers"
<https://support.google.com/webmasters/answer/1061943?hl=en >
9 years ago
Orion Poplawski
81a26266a9
Add changlog entry for postfix-rbl logpath change
9 years ago
Orion Poplawski
75d33c0f09
Add *_backend options for services to allow distros to set the default backend
...
per service.
Set default to systemd for Fedora as appropriate.
9 years ago
Pablo Rodriguez Fernandez
a28e6b442e
Add check in apache-fakegooglebot to protect against PTR fake record
...
An attacker may return a PTR record which fakes a Googlebot's domain
name. This modification resolves the PTR records to verify it.
See "Verifying Googlebot":
<https://support.google.com/webmasters/answer/80553?vid=1-635800030504666679-1963774919 >
9 years ago
sebres
2696ede251
mysqld-auth: Updated "Access denied ..." regex for MySQL 5.6 and later
...
closes gh-1211
9 years ago
Kevin Locke
2a5c93cfb5
Update ChangeLog and THANKS for "Auth fail" changes
...
Document the changes from 36919d9f
in the ChangeLog and add myself to
the THANKS file (at @sebres suggestion).
Signed-off-by: Kevin Locke <kevin@kevinlocke.name>
9 years ago
Yaroslav Halchenko
ff06176e9e
Merge remote-tracking branch 'origin/master' into enh-split-comma
...
* origin/master:
DOC: changelog for the timeout change
Set Timeout at urlopen to 3 seconds
README :: init/service example mentions debian based systems as the example
README :: fitted paragraph style
BF: disable testing on python 3.2 until coverage gets a fix
README :: Some style/grammar tweaks, and init/service script mention. Re: #1193
Set Timeout at urlopen to 3 seconds
9 years ago
Yaroslav Halchenko
6c0f898ec7
DOC: changelog for the timeout change
9 years ago
Yaroslav Halchenko
8cf614e221
ENH: allow to split ignoreip by space and/or comma ( Closes #1197 )
...
Way too many people ran into this gotcha, so lets just do it
9 years ago
Yaroslav Halchenko
55e542b273
Merge remote-tracking branch 'pr/1170/head' -- opensuse paths
...
* pr/1170/head:
Updated ChangeLog regarding openSUSE's path config
Added configuration for opensuse path
9 years ago
Yaroslav Halchenko
db1a3f17e1
ENH: new date pattern with year after day (not after entire entry)
9 years ago
Yaroslav Halchenko
fbdd0b74a1
DOC: Changelog entry for this fix
9 years ago
Ville Skyttä
67a94733a9
logrotate: Do not rotate empty logs
...
As a useful side effect, prevents "Unable to contact server. Is it
running?" mails from cron when fail2ban hasn't been (intentionally)
running nor thus logging anything either.
9 years ago
Edward Beckett
f5b88bd377
Updated Changelog
9 years ago
sebres
4cf3b576b9
Bugfix for dnsToIp resolver for fqdn with large list of IPs;
...
closes #1164
9 years ago
Edward Beckett
4bd7991573
Added apache-badbots.conf
9 years ago
weberho
2d69fd20ae
Updated ChangeLog regarding openSUSE's path config
9 years ago
Yaroslav Halchenko
60fbf7d750
changelog for freshly merged PR (roundcube-auth definition of logpath)
9 years ago
Yaroslav Halchenko
9ebf01293b
Post release tune ups
9 years ago
Yaroslav Halchenko
70ba5cb005
Release changes (too much of manual "labor"! ;))
9 years ago
Yaroslav Halchenko
776322cea3
BF: realpath for /var/run/fail2ban Closes #1142
9 years ago
Yaroslav Halchenko
c37009aec7
Merge branch 'grep-m1k' of github.com:szepeviktor/fail2ban
...
* 'grep-m1k' of github.com:szepeviktor/fail2ban:
Limit the number of log lines in *-lines.conf actions
Conflicts:
ChangeLog -- took both versions and adjusted the new one
for -n 1000 change
9 years ago
Yaroslav Halchenko
a80820e356
Changelog entry for killpg fix
9 years ago
Yaroslav Halchenko
38c320798d
Merge pull request #1127 from yarikoptic/enh-iptables-w-close-1122
...
WIP ENH Add <lockingopt> (Close : #1122 ) and <iptables> to define the iptables call
9 years ago
Yaroslav Halchenko
de69855157
Changelog entries for Serge's fixes
9 years ago
Yaroslav Halchenko
0041bc3770
DOC: Changelog for shorewall-ipset-proto6.conf + adjusted its description
9 years ago
Yaroslav Halchenko
65cd218e10
Merge remote-tracking branch 'origin/master'
...
* origin/master:
ipjailmatches is on one line with its description in man jail.conf
Added a space between IP address and the following colon
9 years ago
Yaroslav Halchenko
333dd842f9
DOC: moved and adjusted changelog entry from 0.9.2 within 0.9.3 to come
9 years ago
Viktor Szépe
c8b3ee10a0
Limit the number of log lines in *-lines.conf actions
9 years ago
Yaroslav Halchenko
33b204a2ee
DOC: Changelog for iptables -w change
9 years ago
Thomas Mayer
a19cb1b2b9
Merge 923d807ef8
into cf2feea987
9 years ago
Viktor Szépe
ebdfbae559
Added a space between IP address and the following colon
10 years ago
Viktor Szépe
586703dcc2
Test, changelog and fixes to pass2allow
10 years ago
sebres
386da502ba
Merge remote-tracking branch 'master' into 'ban-time-incr'
10 years ago
Viktor Szépe
5d60700c0c
Added pass2allow (knocking with fail2ban)
10 years ago
sebres
95c2a2976f
unbanip always deletes ip from database (independent of bantime, also if currently not banned or persistent);
...
merged from #716 where it works;
closes gh-972, closes gh-768
10 years ago
Lee Clemens
fc2b7f8012
Multiple Travis and coverage related changes
...
Reorganize .travis.yml
Separate coverage tests for Python 2 and Python 3
Execute setup.py install using the environment's Python exe
Sanitize Travis execution order
10 years ago
Yaroslav Halchenko
c213d97d25
Moved recently added Changelog (on HEAD addition) to Enhancements
10 years ago
Viktor Szépe
a3b8257b73
Add HEAD method verb to apache-badbots, nginx-badbots
10 years ago
Yaroslav Halchenko
052418a110
Merge pull request #1098 from yarikoptic/enh/man-testcases
...
DOC: rudimentary manpage for fail2ban-testcases (+updated other mans for consistency)
10 years ago
sebres
4a4fe7d76a
extending test cases (increase coverage) + changelog entry for #1099
10 years ago
Yaroslav Halchenko
46510948a7
DOC: rudimentary manpage for fail2ban-testcases (+updated other mans for consistency)
10 years ago
Yaroslav Halchenko
38f8e1a82a
DOC: added changelog for LC_ALL fix, tuned up other ChangeLog entries
10 years ago
Yaroslav Halchenko
e38b4b8cb3
Merge pull request #1051 from leeclemens/bf/roundcube
...
Update regex to work with roundcube 1.0.5 and 1.1.1
10 years ago
Lee Clemens
423d5b761e
Add changelog reference for socket error logging message
10 years ago
Lee Clemens
f7444f16b8
Add optional session id prefix for roundcube 1.1.1
10 years ago
Lee Clemens
2796534a5d
Update regex to work with roundcube 1.0.5 on CentOS 6
10 years ago
Yaroslav Halchenko
e9e00d7599
DOC: ChangeLog -- a better description for cloudflare changes
10 years ago
Viktor Szépe
a00ee15c06
Added Changelog entry
10 years ago
sebres
f2d0230a67
reload in interactive mode appends all the jails twice ( #825 )
10 years ago
sebres
2f283079f8
reload server/jail failed if database used (but was not changed) and some jail active ( #1072 )
10 years ago
Yaroslav Halchenko
345820d2aa
Merge pull request #1056 from ipoddubny/asterisk_security_log
...
Fix support for Asterisk security log
10 years ago
Yaroslav Halchenko
eb091d9b8c
Merge remote-tracking branch 'origin/master' into pr-1039
...
* origin/master:
minor: no tripple empty lines
add froxlor-auth filter and jail
add froxlor-auth filter and jail 0
add froxlor-auth filter and jail
BF: Fix fail2ban-regex not parsing journalmatch correctly
10 years ago
Joern Muehlencord
4296d1a9a9
add froxlor-auth filter and jail
10 years ago
Ivan Poddubny
38d9f3e609
Asterisk security log: add tests and update ChangeLog
10 years ago
Steven Hiscocks
0c869910ea
BF: Fix fail2ban-regex not parsing journalmatch correctly
10 years ago
Anton Shestakov
56e5821c06
Match unknown user in dovecot's passwd-file auth database
10 years ago
Yaroslav Halchenko
fb336276d4
post-release tune ups
...
Conflicts:
ChangeLog
README.md
10 years ago
Yaroslav Halchenko
acc4c2d104
Hope for release tomorrow
10 years ago
Yaroslav Halchenko
840fea9f71
Merge commit '0f75ed5e2ab1159e45a7771a7a4e90c877ec848e'
...
* commit '0f75ed5e2ab1159e45a7771a7a4e90c877ec848e':
Just use a system wide python in the tests digest.py
DOC: Slight tune up to RELEASE doc -- no need for PYTHONPATH to run tests
MANIFEST: updated for some new files, sorted all entries, removed some duplicates
Initial changes for the release -- simplified ChangeLog header etc
10 years ago
Aaron Brice
7ae0ef2408
Fix actions in ufw.conf
...
On Ubuntu 15.04 the ufw action was not working.
- With empty <application>, receiving errors:
2015-04-24 16:28:35,204 fail2ban.filter [8527]: INFO [sshd] Found 43.255.190.157
2015-04-24 16:28:35,695 fail2ban.actions [8527]: NOTICE [sshd] Ban 43.255.190.157
2015-04-24 16:28:35,802 fail2ban.action [8527]: ERROR [ -n "" ] && app="app " -- stdout: b''
2015-04-24 16:28:35,803 fail2ban.action [8527]: ERROR [ -n "" ] && app="app " -- stderr: b''
2015-04-24 16:28:35,803 fail2ban.action [8527]: ERROR [ -n "" ] && app="app " -- returned 1
- With action = ufw[application=OpenSSH], it was silently not doing
anything (no errors after "Ban x.x.x.x", but no IP addresses in ufw
status).
Re-arranged the bash commands on two lines, and it works with or without
<application>.
10 years ago
Lee Clemens
8f792f52fb
Add drupal-auth filter and jail
10 years ago
Yaroslav Halchenko
ca849b93dc
Initial changes for the release -- simplified ChangeLog header etc
10 years ago
Lee Clemens
b530d88eca
Merge remote-tracking branch 'upstream/master' into bf/1000-asteriskBlocksSelf
...
Conflicts:
ChangeLog
10 years ago
Markus Oesterle
b9a09af914
Added changes to ChangeLog & updated sample test cases
10 years ago
Thomas Mayer
c0cf3daac8
Add myself to the changelog
10 years ago
Thomas Mayer
c9b24839e4
Character detection heuristics for whois output via optional setting in mail-whois*.conf ( Closes #1003 )
...
when set by user,
- detects character set of whois output (which is undefined by RFC 3912) via heuristics of the file command
- converts whois data to UTF-8 character set with iconv
- sends the whois output in UTF-8 character set to mail program
- avoids that heirloom mailx creates binary attachment for input with unknown character set
10 years ago
Lee Clemens
72f4bcfbff
Match hacking attempt IP instead of asterisk server IP ( closes #1000 )
10 years ago
Yaroslav Halchenko
320a28a4a4
DOC: make a warning for recidive jail to increase dbpurgeage ( Closes #964 )
10 years ago
Yaroslav Halchenko
31d107d181
BF: asyncore.loop poll=True for recent (>=3.4) pythons too
...
should avoid
File /usr/lib/python3.4/asyncore.py, line 208, in loop
poll_fun(timeout, map)
File /usr/lib/python3.4/asyncore.py, line 145, in poll
r, w, e = select.select(r, w, e, timeout)
OSError: [Errno 9] Bad file descriptor
10 years ago
Yaroslav Halchenko
daa2a9e5d8
Merge pull request #975 from sebres/gh-973-fix
...
BF: binding parameter error (unsupported type) (closes gh-973) ...
10 years ago
Teubel György
0254cbf7fb
Flush logs at USR1 signal
10 years ago
sebres
2bfe22aa66
makes test case more precise;
10 years ago
sebres
6c788a32ee
BF: binding parameter error (unsupported type) by writing json with invalid encoded lines into sqlite database (gh-973);
...
especially python < 3.0; try to prevent occurring such errors in the future;
10 years ago
Yaroslav Halchenko
83805ee5dc
Changelog for preceding merge
10 years ago
Yaroslav Halchenko
54e182e017
Merge pull request #955 from sebres/fail2ban-regex-gh-954
...
BF: fail2ban-regex does not read '.local' file of given filter (Close #954 )
10 years ago
Yaroslav Halchenko
ae2af0d51b
Minor tune up to changelog (we should eventually just make it into .md format)
10 years ago
Yaroslav Halchenko
07b0ab07ad
Merge branch 'master' of https://github.com/rumple010/fail2ban
...
* 'master' of https://github.com/rumple010/fail2ban :
Changed default TTL value to 60 seconds.
Added a reminder to create an nsupdate.local file to set required options.
Modified the ChangeLog and THANKS files to reflect the addition of action.d/nsupdate.conf.
add nsupdate action
Conflicts:
ChangeLog
10 years ago
sebres
74c6f6ac4b
BF: fail2ban-regex does not read '.local' file of given filter (gh-954)
10 years ago
Yaroslav Halchenko
3fb2becddb
Merge pull request #949 from leeclemens/enh/configSyslogSocket
...
Configure Syslog Socket Path (closes #814 )
10 years ago
Yaroslav Halchenko
119a7bbb16
Merge pull request #939 from szepeviktor/geoip
...
Added sendmail-geoip-lines.conf
10 years ago
Lee Clemens
d676a9fd4f
update ChangeLog with syslogsocket config enhancement
10 years ago
Yaroslav Halchenko
40068f5f31
Merge pull request #933 from mrc0mmand/nginx-botsearch
...
Add jail nginx-botsearch and refactor common with apache-botsearch regexes into botsearch-common
10 years ago
Yaroslav Halchenko
eaca33e227
Merge branch 'enh/clarifyDnsUtilsMethods' of https://github.com/leeclemens/fail2ban
...
* 'enh/clarifyDnsUtilsMethods' of https://github.com/leeclemens/fail2ban :
Update ChangeLog
Clarify filter.DNSUtils functions' terminology and add unittests
Conflicts:
ChangeLog -- rephrased a bit as well
10 years ago
Lee Clemens
ed71a7cd22
Update ChangeLog
10 years ago
František Šumšal
9bd25f51c1
Added ChangeLog and THANKS entry
10 years ago
Lee Clemens
4091fdde27
Update ChangeLog from PR 930
10 years ago
Orion Poplawski
e7ff7e90b7
[postfix-sasl] update regexes
...
- Add : to match "SASL LOGIN authentication failed: Password:"
- Add ignoreregex to ignore system authentication issues:
"warning: unknown[1.1.1.1]: SASL LOGIN authentication failed: Connection lost to authentication server"
- Add test log messages for both
10 years ago
Yaroslav Halchenko
646c799231
Changelog for above merge
10 years ago
Yaroslav Halchenko
73af02ffc6
Merge pull request #940 from leeclemens/ENH/ApacheFakeGoogleBot
...
New jail: apache-fakegooglebot
10 years ago
Yaroslav Halchenko
7f2d1a7269
minor changelog entry reformatting
10 years ago
Yaroslav Halchenko
7ada96b4e9
Merge pull request #932 from opoplawski/dovecot
...
Dovecot - dovecot auth failure from EL7
10 years ago
Yaroslav Halchenko
8f6d9c6a5a
Merge branch 'enh/local_time_zone' of https://github.com/yarikoptic/fail2ban
...
* 'enh/local_time_zone' of https://github.com/yarikoptic/fail2ban :
fixed typos, thanks szepeviktor for review
ENH: use non-UTC date invocation (without -u) and report offset for localzone (%z)
Conflicts:
ChangeLog
10 years ago
Yaroslav Halchenko
96ae041132
fixed typos, thanks szepeviktor for review
10 years ago
Lee Clemens
00961d5281
Remove ignorecommand addition from ChangeLog
10 years ago
Lee Clemens
af078532ac
New jail: apache-fakegooglebot
...
Detects fake googlebot user agents in apache access log
10 years ago
Viktor Szépe
0430e0dacc
Changelog entry for sendmail-geoip-lines
10 years ago
Yaroslav Halchenko
ec6a30efcf
ENH: define ignoreregex for all filters explicitly, to avoid warnings ( Closes #934 )
10 years ago
Orion Poplawski
b4776a1ba0
Match dovecot unknown user line
10 years ago
Orion Poplawski
ee5c5b34d6
Add ChangeLog and THANKS entry
10 years ago
Yaroslav Halchenko
64feb0fd16
Merge pull request #924 from leeclemens/ENH/StatusExtendedInfo
...
Add extended info to status output using Cymru
10 years ago
Lee Clemens
486214585e
Update extended status to accept additional argument, flavor
...
Default to as-in behavior, or flavor=="basic"
10 years ago
Andrew St. Jean
e0f11ae722
Modified the ChangeLog and THANKS files to reflect the addition of action.d/nsupdate.conf.
10 years ago
Yaroslav Halchenko
085d0f72ed
ENH: use non-UTC date invocation (without -u) and report offset for localzone (%z)
10 years ago
Yaroslav Halchenko
65980a70fc
Merge branch 'enh/recidive-allports' of https://github.com/yarikoptic/fail2ban
...
* 'enh/recidive-allports' of https://github.com/yarikoptic/fail2ban :
use iptables-allports for recidive
Conflicts:
ChangeLog
10 years ago
Lee Clemens
60ac0a1a17
Add extended info to status output using Cyrmu
10 years ago
sebres
33e9e2174a
recursive/embedded version of issue/907;
...
test cases merged from remote-tracking branch 'yarikoptic:enh/embedded_tags' into issue/907
infinite busy loop on _escapedTags match in substituteRecursiveTags gh-907
10 years ago
sebres
b04a51246f
infinite busy loop on _escapedTags match in substituteRecursiveTags gh-907
10 years ago
sebres
12e3cca3f2
port[s] typo fixed in jail.conf/nginx-http-auth, issue gh-913
10 years ago
Yaroslav Halchenko
c7edd9e67f
Merge pull request #901 from leeclemens/ENH/PostfixRBL
...
Create Jail for Postfix based on RBL
10 years ago
Yaroslav Halchenko
995b1d18df
Merge pull request #906 from leeclemens/BF/755-strptime
...
Fix strptime thread safety issue
10 years ago
Lee Clemens
77677e43df
Merge branch 'master' of github.com:fail2ban/fail2ban into ENH/PostfixRBL
10 years ago
sebres
d5ebe542f9
Merge branch 'master' into 'sebres:ban-time-incr'
10 years ago
Lee Clemens
4714028c69
Change case and tense for consistency
10 years ago
Lee Clemens
bda8dc1926
Merge branch 'master' of github.com:fail2ban/fail2ban into ENH/PostfixRBL
10 years ago
Lee Clemens
2f360ce447
Update Changelog with strptime fix
10 years ago
Lee Clemens
38641e741a
Merge branch 'master' of github.com:fail2ban/fail2ban into BF/755-strptime
...
Conflicts:
ChangeLog
10 years ago
Lee Clemens
541a747d79
Update Changelog with strptime fix
10 years ago
TorontoMedia
74c3d5d96c
Updated ChangeLog
10 years ago
TorontoMedia
948eec6425
Upd
10 years ago
TorontoMedia
a47001ea0e
Updated ChangeLog
10 years ago
TorontoMedia
c2bb3253ad
Update ChangeLog
10 years ago
Yaroslav Halchenko
acfa83229b
Merge branch 'master' of git://github.com/fail2ban/fail2ban
...
* 'master' of git://github.com/fail2ban/fail2ban:
Update year in postfix logs test file
Add 'Client host rejected error message' regex Not sure if it was reworded (using Postfix 2.6) or a slightly different error, but I only have "Client host rejected: cannot find your hostname"
10 years ago
Lee Clemens
fe72a5585c
Create Jail for Postfix based on RBL
...
Use RBL blocks to ban addresses, unique Jail so maxretry can be set to 1 (vs postfix.conf)
10 years ago
Lee Clemens
2d7429c47c
Add 'Client host rejected error message' regex
...
Not sure if it was reworded (using Postfix 2.6) or a slightly different error, but I only have "Client host rejected: cannot find your hostname"
10 years ago
Yaroslav Halchenko
d65c4f8f5d
moved debian's initd file to files/debian-initd from debian branch
10 years ago
Yaroslav Halchenko
bcfcefa203
Merge branch 'patch-2' of https://github.com/szepeviktor/fail2ban
...
* 'patch-2' of https://github.com/szepeviktor/fail2ban :
downcase example
Added an item to "Fixes"
postfix-sasl failregex case insensitive
10 years ago
Viktor Szépe
10f68f4946
Update ChangeLog
10 years ago
Viktor Szépe
190f55b06e
Added an item to "Fixes"
10 years ago
sebres
27bc2e012d
Merge remote-tracking branch 'master' into sebres:ban-time-incr
10 years ago
bes-internal
ccc986b7d8
exim filter: correct failregex for exim with extended log options
...
incoming_interface, incoming_port, outgoing_port
10 years ago
sebres
5ca275876b
Merge remote-tracking branch 'remotes/upstream/master' into sebres:ban-time-incr
10 years ago
sebres
5dc1a583b4
Merge remote-tracking branch 'remotes/upstream/master' into sebres:ban-time-incr
...
Conflicts:
fail2ban/server/actions.py
fail2ban/server/database.py
fail2ban/tests/databasetestcase.py
fail2ban/tests/servertestcase.py
10 years ago
sebres
80fb48c5b0
Merge remote-tracking branch 'remotes/upstream/master' into sebres:addfailregex-gh-867
10 years ago
sebres
effdb450fc
better and scalable solution for gh-867 (and gh-868), using only name convention like %(known/failregex)s to add custom expressions, so no interface changes in jail.conf are necessary (for example see test-known-interp in test cases);
10 years ago
Yaroslav Halchenko
9bab6d0009
Changelog entry for preceding fix
10 years ago
sebres
d63b125877
interpolation of config readers extended with `%(known/parameter)s`.
...
(means last known option with name `parameter`).
10 years ago
sebres
1439152121
test cases extended (now correct)
10 years ago
sebres
cad09d2df3
BF: failregex declared direct in jail was joined to single line, (specifying of multiple expressions was not possible);
...
feature request (gh-867): new options for jail introduced addfailregex/addignoreregex: extends regex specified in filter (opposite to failregex/ignoreregex that overwrites it);
10 years ago
Yaroslav Halchenko
2a3790f8e8
use iptables-allports for recidive
10 years ago
Yaroslav Halchenko
a44cfba9ae
Merge pull request #841 from opoplawski/firewallcmd-multiport
...
ChangeLog for firewallcmd-new multiport support
10 years ago
Orion Poplawski
21be983620
ChangeLog for firewallcmd-new multiport support
10 years ago
Yaroslav Halchenko
967485c2d0
improving grepping
10 years ago
Yaroslav Halchenko
36abb5ed96
BF: fix $ for % in jail.conf. Debian bug #767255
10 years ago
sebres
c1db282fcd
Merge remote-tracking branch 'remotes/upstream/master' into sebres:ban-time-incr
10 years ago
Yaroslav Halchenko
7acddcbe4a
Post-release boost to .dev
10 years ago