github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
5084 Commits
32 Branches
229 Tags
17 MiB
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '98c7dd04a4'
${ noResults }
Commit Graph

5084 Commits (98c7dd04a403a52e2cd123a6d992b2ac1e96e7c8)
 

Author SHA1 Message Date
sebres 24093de32d small amend (simplifying formatted help and man)
4 years ago
Nathan Henrie f518d42c59 Add a note about `journalflags` options to `systemd-journal` backend
4 years ago
sebres 4c2539856c Merge branch 'speedup-client-status' into 0.10
4 years ago
Sergey G. Brester d977d81ef7
action.d/abuseipdb.conf: removed broken link, simplified usage example, fixed typos
4 years ago
sebres f381b98246 introduces new flavor `short` for `fail2ban-client status $jail short`: output total and current counts only, without banned IPs list in order to speedup it and to provide more clear output (gh-2819), flavor `basic` (still default) is unmodified for backwards compatibility;
4 years ago
sebres e8ee3ba544 resolves a bottleneck within transmitting of large data between server and client: speedup search of communications end-marker and increase max buffer size (up to 32KB)
4 years ago
sebres 5abc4ba4ae amend to 39d4bb3c35 (#2758): better reaction on broken pipe (on long output), don't close stdout explicitly (allows usage of modules like cProfile, which outputs result on exit), just flush it before exit.
4 years ago
sebres f555ff45e9 attempt to speedup ban- and fail-manager (e. g. fail2ban-client status, see gh-2819), remove unneeded lock (GIL is enough here)
4 years ago
sebres a038fd5dfe `action.d/firewallcmd-*.conf` (multiport only): fixed port range selector, replacing `:` with `-`;
4 years ago
sebres ed20d457b2 jail.conf: removed action parameter `name` that set on jail-name (`name=%(__name__)s` is default in action reader)
4 years ago
sebres f09ba1b399 action in jail-config extended to consider space as separator now (splitWithOptions separates by space between mains words, but not in options), so defining `action = a b` would specify 2 actions `a` and `b`;
4 years ago
sebres a3a148078e fail2ban-regex: more informative output for `datepattern` (e. g. set from filter) - pattern : description, example:
4 years ago
sebres 17a6ba44b3 fail2ban-regex: speedup formatted output (bypass unneeded stats creation);
4 years ago
sebres db1f3477cc amend to 3f04cba9f92a1827d0cb3dcb51e57d9f60900b4a: sendmail-auth has 2 failregex now, so rewritten with prefregex
4 years ago
sebres 3f04cba9f9 filter `sendmail-auth` extended to follow new authentication failure message introduced in sendmail 8.16.1, AUTH_FAIL_LOG_USER (gh-2757)
4 years ago
sebres 07fa9f2912 fixes gh-2787: allow to match `did not issue MAIL/EXPN/VRFY/ETRN during connection` non-anchored with extra mode (default names may deviate);
4 years ago
sebres d0d1f8c362 improve result for get/set prefregex
4 years ago
sebres e569281d6b avoids overwrite of `known/option` with unmodified (not available) value of `option` from .local config file,
4 years ago
sebres 5a2cc4e1c5 substituteRecursiveTags: more precise self- or cyclic-recursion prevention (don't clear replacement counts of tags, rather consider replacement count by tax X in tag Y)
4 years ago
Sergey G. Brester 81fb28e146
Merge pull request #2631 from benrubson/guacamole
4 years ago
sebres 2945fe8cbd changelog
4 years ago
sebres d9b8796792 amend with better (common) handling, documentation and tests
4 years ago
sebres 7b05c1ce7a do type-convert only in getCombined (otherwise int/bool conversion prevents substitution or section-related interpolation of tags)
4 years ago
benrubson 1707560df8 Enhance Guacamole jail
4 years ago
sebres ad51fb7e1e partial cherry-pick fd25c4cbb8 (#2768)
4 years ago
Sergey G. Brester 8da663a67e
Merge pull request #2814 from sebres/0.10-date-opt
4 years ago
sebres 295630cccf documentation and changelog
4 years ago
sebres 76e5d2b199 amend to f21c58dc72, better follow previous handling with last known datetime (compatibility for multi-line logs, in case of second line without a timestamp)
4 years ago
sebres f21c58dc72 implements special datepattern `{NONE}` - allow to find failures without date-time in log messages (filter use now as timestamp)
4 years ago
sebres b82f584a96 added test case covering new date handling (simulation, unknown format, warnings, etc)
4 years ago
sebres d2cef96f33 filter: implement mode `inOperation`, which gets activated if filter starts processing of new messages; better interaction with non-matching optional datepattern or invalid timestamps (or timezone) - assuming now instead of bypass;
4 years ago
sebres 7e8d98c4ed code review, fix simplest TZ issue - avoid date adjustment by assuming of last year (date without year in the future) by wrong zone (don't adjust by offset up to +24 hours)
4 years ago
sebres 3ca69c8c0a amend to #2791: unban subnet when subnet is in supplied subnet
4 years ago
sebres 7d172faa50 implements gh-2791: fail2ban-client extended to unban IP range(s) by subnet (CIDR/mask) or hostname (DNS)
4 years ago
sebres 39d4bb3c35 closes gh-2758: no explicit flush (close std-channels on exit, it would cause implicit flush without to produce an error 32 "Broken pipe" on closed pipe)
4 years ago
sebres a7ad3e00dd amend to 91eca4fdeb (#2634): server creates a RTM-directory for socket/pid file automatically (don't check its existence in client)
4 years ago
sebres 253d47d33c compat: some 2.x pypy versions produce UnicodeEncodeError: 'ascii' codec can't encode character on surrogates (uni_string must be fixed also for UTF-8 system encoding)
4 years ago
sebres 9510346507 typo in skip message
4 years ago
sebres 0ef8f6675d fix travis builds (pipy in xenial, don't error if doc missing in default path after install)
4 years ago
sebres 9100d07c03 Merge branch '0.10-ipset-tout' into 0.10, amend to #2703: resolves names conflict (command action timeout and ipset timeout); closes #2790
4 years ago
sebres 62a6771b33 Merge remote-tracking branch 'sebres:0.10' into 0.10; closes gh-2763
4 years ago
sebres 73a8175bb0 resolves names conflict (command action timeout and ipset timeout); closes gh-2790
4 years ago
Sergey G. Brester ea35f2ad75
default loglevel is INFO
4 years ago
Sergey G. Brester 08dbe4abd5
fixed comment for loglevel, default is INFO
4 years ago
sebres 309c8dddd7 action.d/nftables.conf (type=multiport only): fixed port range selector (replacing `:` with `-`)
4 years ago
sebres 5a0edf61c9 filter.d/sshd.conf: normalizing of user pattern in all RE's, allowing empty user (gh-2749)
5 years ago
sebres 9b6da03c90 amend to e786dbf132689133c29671871718a97f93b8912a: removes space between name and [pid] by normal non-verbose logging, padding without truncate now; test coverage for getVerbosityFormat;
5 years ago
sebres b8e2b77265 Merge branch '0.10-extend-proto-banned' into 0.10
5 years ago
sebres fa1ff4c5d8 assertSortedEqual: fixed sort of nested lists, switch default of nestedOnly to False (comparison of unsorted lists is rarely needed)
5 years ago
sebres 54b2208690 extends protocol/client with banned status (retrieve information whether an IP is banned and/or in which jails), implements FR gh-2725
5 years ago