Commit Graph

4779 Commits (7520d250b0dd6afa04070ddd8c6a6c8a2b15428f)
 

Author SHA1 Message Date
Sergey G. Brester c40e4c7bad
Merge pull request #2279 from sebres/sshd-filter-gh-2239
6 years ago
Sergey G. Brester 0ac5c8941c
Update ChangeLog
6 years ago
sebres 1c1d2cc435 introduces new failregex-flag tag `<F-MLFGAINED>` signaled that the access to service was gained (ATM used similar to <F-NOFAIL>, but does not added to matches);
6 years ago
Sergey G. Brester 189c3f964b
Merge pull request #2276 from dienteperro/patch-1
6 years ago
dienteperro 0df221b54b
"be" instead of "me" in shorewall.conf
6 years ago
sebres 657b147c0d fixed dependency issue if setup invoked using python 3.x: invocation of 2to3 takes place after setup (and __init__.py) loaded;
6 years ago
sebres e99635650a dnsToIp and other DNSUtils primitives uses sets instead of lists now (speed-up search of ip, e. g. ignoreself/ignoreip check process)
6 years ago
sebres 0ae02ba2a1 version bump (back to dev-version)
6 years ago
sebres aa565eb80e release 0.10.4 - ten-four-on-due-date-ten-four
6 years ago
Sergey G. Brester 1752c19b6f
Merge pull request #2205 from benrubson/patch-1
6 years ago
Sergey G. Brester 65676baf8c fixed py3 incompatibility (for some reasons this file seems to be excluded from 2to3), anyway not needed, because int-type is already checked in str2LogLevel
6 years ago
Sergey G. Brester 4b751c84c3
badips.py: Rewrite new bool option "log" as "loglevel" and revert default to log-level (DEBUG).
6 years ago
sebres 6067579464 Fixed action parameter `timeout`: it is a time (integer), so avoid to convert it to string (for replacement); fix substituteRecursiveTags using auto-convert to string.
6 years ago
sebres 17da4943df use short log-names for special pure numeric log-level (e.g. "Level 25" could be truncated by short formats)
6 years ago
sebres 2a4c47ea32 .travis.yml: coveralls doesn't support python 2.6 now
6 years ago
sebres 58b510a5be filter.d/domino-smtp.conf:
6 years ago
sebres 08f3f12f10 fix sporadic test-cases fails: change debug transmitter-message (sometimes confused with expected "Server ready" of server), better syntax for internal subst _use_flush;
6 years ago
sebres d01fe9d22a action.d/*.conf: correct comments for actionstart/actionstop
6 years ago
Ben RUBSON 9d7c0e00c1
Also log number of IPs removed/added
6 years ago
Sergey G. Brester 5b0c3e75d3
Merge pull request #2189 from yarikoptic/bf-initd-exit
6 years ago
Ben RUBSON 70e53b55c5
Typo
6 years ago
Ben RUBSON ec4c4b12c1
Add yes/no log option to badips.py
6 years ago
sebres e392f510e2 fix sporadic time-related (multi-threaded) assertion errors (message was not found in the log).
6 years ago
Sergey G. Brester ee207d8c31
Merge pull request #2151 from benrubson/merge
6 years ago
Ben RUBSON 77b35b8db7
Improvement
6 years ago
sebres e2a255d104 fixed typo in comments by "ignoreself" parameter
6 years ago
sebres 6ad9bb56a0 Update ChangeLog
6 years ago
sebres e995d5a0b6 filter.d/freeswitch.conf: provide mode parameter, allows to avoid matching of messages like `auth challenge (REGISTER)` (see gh-2163) (currently `extra` as default to be backwards-compatible), see comments in filter how to set it to mode `normal`.
6 years ago
sebres bc2dbacc9a filter.d/freeswitch.conf: provide compatibility for log-format from gh-2193:
6 years ago
Yaroslav Halchenko ae359f6f05 BF: $value not $code
6 years ago
Yaroslav Halchenko 298f2c066a BF: account that now code 255 is the one to say "it is Ok, we are already running/stopped"
6 years ago
Yaroslav Halchenko f323eceec7 BF: debian-initd, exit with exit code in logend_msg_wrapper
6 years ago
Yaroslav Halchenko d9b9b6ba22 RF: exit codes are positive, so exit(255) instead of exit(-1)
6 years ago
sebres 22d37cdce2 sshd: fixed failregex for ddos (resp. aggressive) mode, to cover "authenticating user" case in log-message:
6 years ago
sebres 64d9e164cf extends samples test-case factory to see the matched regex number and expression in assert message (helps if some similar regexp's available in filter)
6 years ago
sebres d92381aaa9 fail2ban-regex: ignore lines having not empty match of `<F-NOFAIL>` from failregex (not a failure, so count as ignored and not as matched).
6 years ago
sebres 8fe07e29ad filter.d/dovecot.conf: failregex enhancement to catch disconnected with "proxy dest auth failed";
6 years ago
sebres 94ffd00328 fixes initialization bug if sys.stdout.encoding is None (closes gh-2177).
6 years ago
Sergey G. Brester cc321b78da
Merge pull request #2176 from sebres/ignore-cache
6 years ago
sebres f8f01d5ab7 introduced new option `ignorecache` to improve performance of ignore failure check (using caching of `ignoreip`, `ignoreself` and `ignorecommand`)
6 years ago
sebres 9b6d17d07e extend `ignorecommand` to use actions-similar replacement (ticket-based now, so capable to interpolate all possible tags)
6 years ago
Sergey G. Brester 11c1bf0149
Update ChangeLog
6 years ago
Daniel Dương a719ba81e9 Fix cymru reference link
6 years ago
sebres d9b9bb5f40 Merge pull request #2125 from jodlajodla/0.11 (rebased)
6 years ago
sebres 1e44b3f085 systemd no cover (currently unsupported by travis)
6 years ago
Jan Sušnik 54a04b3a6a Fixed data type of journal flags from str to int
6 years ago
Jan Sušnik df33322f9f Added test to prove bug when specifying journal flags to systemd backend
6 years ago
Sergey G. Brester 75330568d9
Merge pull request #2168 from dpavlin/dovecot-add-F-USER
6 years ago
sebres f7962469a9 Merge pull request #2173 from mattsta/fix/findtime-backsearch-on-file-load (rebased)
6 years ago
sebres 1eb93e2556 filter.py: repair start-time of initial seek to time (regardless the position of `findtime` option in config);
6 years ago