Steven Hiscocks
40f67c64b8
TST: Test sample logs' entries are matched by filter regexs
12 years ago
Daniel Black
1bb427cc14
TST: remove dup test log entry
12 years ago
Daniel Black
6ce41a611d
BF: fix filter on apache-auth. Closes #286
12 years ago
Daniel Black
5412d7336f
DOC: ChangeLog confict
12 years ago
Yaroslav Halchenko
5f04b4954f
Merge pull request #280 from yarikoptic/master
...
BF+ENHs: polling backend tracks ino and size now in addition to mtime, filters do not read file unless it has content + few other minor issues
12 years ago
Daniel Black
619603fe05
BF: match asterisk InvalidPassword correctly
12 years ago
Steven Hiscocks
bfa2b9dec3
ENH: dovecot filter additions for session, time value and blank user
12 years ago
Yaroslav Halchenko
47ac39fb34
TST: minor enhancement to test failure msg
12 years ago
Yaroslav Halchenko
052e7ff9da
ENH: deprecate sophisticated MTimeSleep in favor of no sleeping at all
...
all invocations of mtimesleep() are left in the tests for now
12 years ago
Yaroslav Halchenko
8c125b6053
ENH: do not sleep 1 sec only on older Pythons while testing filters
12 years ago
Daniel Black
d6dece4900
ENH: Split log and provide jail examples
12 years ago
Yaroslav Halchenko
e9c8a51ce4
ENH: further tighten up detection of mtimesleep duration + log what was assigned
12 years ago
Yaroslav Halchenko
8f3671bc94
BF: figure out minimal sleep time needed for mtime changes to get detected. Close #223 , and probably #103
12 years ago
Yaroslav Halchenko
e6ebcf6687
Merge branch 'dovecot' of https://github.com/grooverdan/fail2ban
...
* 'dovecot' of https://github.com/grooverdan/fail2ban :
ENH: remove non-capturing groups for readibility
BF: fix dovecot filter for when no TLS is enabled on pop/imap
Conflicts:
ChangeLog -- changelog entries. Also untabified few other spots
12 years ago
Yaroslav Halchenko
f0f237fa05
Merge pull request #269 from grooverdan/asterisk
...
ENH: filter.d/asterisk - consolidate log prefix regex and add a few fail messages
12 years ago
Daniel Black
4777cfd4e7
ENH: split out exim-spam into speparate filter
12 years ago
Yaroslav Halchenko
54cce29b3e
Merge pull request #271 from yarikoptic/master
...
BF: support apache 2.4 more detailed error log format. Close #268
Thanks @grooverdan for the review
12 years ago
Daniel Black
c7d64c3c7f
TST: url reference fix
12 years ago
Daniel Black
ca996ace5e
ENH: remove temporary failures from local_scan in line with comments in gh-258
12 years ago
Daniel Black
72f9e6a51e
ENH/TST: more samples and rejection types for sender verify fail and rejected RCPT
12 years ago
Daniel Black
3b76fc79f9
BF: fix dovecot filter for when no TLS is enabled on pop/imap
12 years ago
Steven Hiscocks
b670b5c792
TST: Change depreciated assertEquals to assertEqual in some tests
12 years ago
Yaroslav Halchenko
1b170b2aef
BF: support apache 2.4 more detailed error log format. Close #268
12 years ago
Yaroslav Halchenko
6d331bcbea
BF: make colon after [daemon] optional. Close #267
12 years ago
Daniel Black
fa7a105483
ENH: filter.d/asterisk - consolidate log prefix regex and add a few fail messages
12 years ago
Yaroslav Halchenko
b9e971c25d
Merge branch 'exim' of https://github.com/grooverdan/fail2ban
...
* 'exim' of https://github.com/grooverdan/fail2ban :
DOC: credits/blame to me for changes to exim
ENH: new exim filter regexs. Also note a begining PID in this format. Thanks to ftoppi for the log entries
TST/ENH: Improve regex around exim
12 years ago
Yaroslav Halchenko
057f0ad135
ENH: allow_no_files option for jail's convert to allow testing of stock jail.conf
12 years ago
Daniel Black
b8cfda68b8
ENH: new exim filter regexs. Also note a begining PID in this format. Thanks to ftoppi for the log entries
12 years ago
Daniel Black
d441d61a1e
TST/ENH: Improve regex around exim
...
rejected by local_scan now has test cases.
Unrouteable address error messages now normalised after looking into
exim code.
12 years ago
Yaroslav Halchenko
9d4b613ee4
Merge branch '3proxy' of https://github.com/grooverdan/fail2ban
...
* '3proxy' of https://github.com/grooverdan/fail2ban :
BF: fix to proxy port in 3proxy example
ENH: sample log + more specific regex
BF: authentication errors end in 01-09 but the beginning part indicates the service as per https://github.com/fail2ban/fail2ban/issues/246#issuecomment-19327955 thanks to ykimon
BF: need to anchor the start to avoid another repeat of DoS injection like Apache
ENH: stricter regex thanks to Steven Hiscocks (kwirk)
DOC: credits
Conflicts:
ChangeLog
12 years ago
Yaroslav Halchenko
173fe48e77
Merge branch 'exim' of https://github.com/grooverdan/fail2ban
...
* 'exim' of https://github.com/grooverdan/fail2ban :
BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address
ENH: readibility thanks to Yaroslav
ENH/BF: exim improvements with sample
Conflicts:
ChangeLog
12 years ago
Yaroslav Halchenko
ec629ab4e8
Merge branch 'proftpd' of https://github.com/grooverdan/fail2ban
...
* 'proftpd' of https://github.com/grooverdan/fail2ban :
ENH: proftpd chan accept usernames with spaces
ENH: injection of fail data into USER field
ENH: proftp regex hardening and log messages
Conflicts:
ChangeLog
12 years ago
Daniel Black
8cc13b5b40
BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address
12 years ago
Daniel Black
e8b6acfa65
TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15
12 years ago
Daniel Black
2e2ec5d1f5
ENH: injection of fail data into USER field
12 years ago
Daniel Black
dbe7ffe050
ENH: dovecot regexs rewritten and extra failures
12 years ago
Daniel Black
4c67a269bf
ENH: proftp regex hardening and log messages
12 years ago
Daniel Black
3e3802512a
ENH/BF: exim improvements with sample
12 years ago
Daniel Black
9dbaec0894
ENH: sample log + more specific regex
12 years ago
Yaroslav Halchenko
6ccd57813c
BF: anchor apache- filters. Close #248
...
See https://vndh.net/note:fail2ban-089-denial-service for more information
12 years ago
Daniel Black
16d63434ef
DOC: credits
12 years ago
Carlos Alberto Lopez Perez
7248ef4564
Filter Asterisk: Add sample log entry to testcase.
...
* Sample log entry for AUTH_UNKNOWN_DOMAIN (Not a local domain)
12 years ago
Daniel Black
916b5a7c23
TST: normalize logs to use example.com and 1.2.3.4 as IP
12 years ago
Daniel Black
eceede175a
Merge branch 'patch-4' of https://github.com/silviogarbes/fail2ban into asterisk-227
12 years ago
Yaroslav Halchenko
fae2d5c0ce
Merge branch 'patch-3' extending roundcube failregex to support v0.9+ (from https://github.com/teroz/fail2ban )
...
* 'patch-3' of https://github.com/teroz/fail2ban :
failregex when roundcube log driver is set to 'syslog'
fixed failregex line for roundcube 0.9+
12 years ago
Steven Hiscocks
7a4db4b4b9
TST: Fix fail2ban.conf reader test for unreliable dictionary order
12 years ago
Terence Namusonge
098c88a67b
failregex when roundcube log driver is set to 'syslog'
12 years ago
Yaroslav Halchenko
8a57ffd2fb
TST: test all stock jails to have actions and correctly specifying blocktype
12 years ago
silviogarbes
52fa5f19b0
Update asterisk
12 years ago
Yaroslav Halchenko
04bf9eceb6
BF: (travis) relax the test for needed to be presented installed directories -- allow new
...
on travis scripts install into user's home by default
12 years ago
Yaroslav Halchenko
6aed705f3d
BF: (travis) if tests ran under coverage -- there is a traceback parts to report (thus > would be present)
12 years ago
Yaroslav Halchenko
1b301d723d
ENH: also print the failing traceback line in case of failure
...
Also to troubleshoot
https://travis-ci.org/fail2ban/fail2ban/jobs/7112324
12 years ago
Yaroslav Halchenko
f345c4d7dc
ENH: include explicit list of new files which should not be there upon "install --root"
...
that is to figure out what gets there on failing travis tests:
e.g. https://travis-ci.org/fail2ban/fail2ban/jobs/7112324
12 years ago
Yaroslav Halchenko
571ff33fde
ENH: issue a warning if jail name is longer than 19 symbols ( Close #222 )
12 years ago
Yaroslav Halchenko
bdc86e5f1d
ENH: use the same python executable for setup.py test
...
This doesn't anyhow resolve gh-161 which was revealed consistently on Debian sytem
after adding this testSetupInstallRoot
12 years ago
Yaroslav Halchenko
281d310b7e
ENH: actually tune up TraceBack to determine "unittest" portions of the stack across all python releases
...
before for 2.7 it would spit out "suite" and other components of unittest module
12 years ago
Yaroslav Halchenko
dc05eee0f5
TST: Some primarily smoke tests for tests utils
12 years ago
Yaroslav Halchenko
e70d01bc10
TST: cover few more lines in fail2banreader.py
12 years ago
Yaroslav Halchenko
26715d5e5e
ENH: basic test for setup.py itself (when applicable, should greatly improve coverage ;) )
12 years ago
Yaroslav Halchenko
90d6a4a6cd
ENH: consistent operation of formatExceptionInfo + unittest for it
12 years ago
Yaroslav Halchenko
7a6eecbe21
ENH: close open file in a test
12 years ago
Yaroslav Halchenko
0e5f7b5951
Merge branch '_enh/strip_crlf'
...
* _enh/strip_crlf:
Changelog for preceeding commit
ENH: strip CR and LF while analyzing the lines (processLine) (Close #202 )
12 years ago
Yaroslav Halchenko
28794d842d
ENH: close files in _test_move_into_file
12 years ago
Yaroslav Halchenko
582d1c5ea5
ENH: remove use of $Revision and $Date SVN tags
12 years ago
Yaroslav Halchenko
6fef85ff2d
ENH: strip CR and LF while analyzing the lines (processLine) ( Close #202 )
...
This should allow to resolve issues with logs written in MS-DOS fashion,
e.g. with daemontools
See https://github.com/fail2ban/fail2ban/issues/202\#issuecomment-17393613
12 years ago
Yaroslav Halchenko
571cadd80c
ENH: Use real (resolving) example.com instead of test.example.com
12 years ago
Yaroslav Halchenko
976a65bb89
Merge branch 'bsd_logs' of https://github.com/grooverdan/fail2ban
...
* 'bsd_logs' of https://github.com/grooverdan/fail2ban :
ENH: separate out regex and escape a .
BF: missed MANIFEST include
DOC: credits for bsd log
DOC: bsd syslog files thanks to Nick Hilliard
BF: change common.conf to handle formats of syslog -v and syslog -vv in BSD
Conflicts:
config/filter.d/common.conf
12 years ago
Yaroslav Halchenko
5e1d8b07e8
ENH: logs/sshd -- have ":" after [daemon] (other uses are uncommon)
...
See https://github.com/fail2ban/fail2ban/issues/216\#issuecomment-17535577
for the analysis
12 years ago
Yaroslav Halchenko
ffcac2ccee
ENH: logs/sshd -- use example.com as the resolved hostname in sample log lines
12 years ago
Yaroslav Halchenko
2143cdff39
Merge: opensolaris docs/fixes, no 'sed -i' in hostsdeny, sshd regex tuneups
...
Origin: from https://github.com/jamesstout/fail2ban
* 'OpenSolaris' of https://github.com/jamesstout/fail2ban :
ENH: Removed unused log line
BF: fail2ban.local needs section headers
ENH: Use .local config files for logtarget and jail
ENH+TST: ssh failure messages for OpenSolaris and OS X
ENH: fail message matching for OpenSolaris and OS X
ENH: extra daemon info regex
ENH: actionunban back to a sed command
Readme for config on Solaris
create socket/pid dir if needed
Extra patterns for Solaris
change sed to perl for Solaris
Conflicts:
config/filter.d/sshd.conf
12 years ago
Yaroslav Halchenko
bcecf085f1
Merge pull request #209 from grooverdan/tst_br
...
TST: test case for <br> tags in action
12 years ago
jamesstout
932bd102fe
ENH: Removed unused log line
...
removed #9 per
https://github.com/fail2ban/fail2ban/pull/182#discussion_r4068885
12 years ago
Daniel Black
503602b332
TST: test case for <br> tags in action
12 years ago
Daniel Black
cde7108033
DOC: bsd syslog files thanks to Nick Hilliard
12 years ago
Daniel Black
495f2dd877
DOC: purge of svn tags
12 years ago
Yaroslav Halchenko
89adcd7ff7
Merge branch PR #193 ASSP SMTP Proxy support (with some manual squashing)
...
Origin: https://github.com/lenrico/fail2ban
Squashing was done via rebase -i 1524b076d6
to eliminate massive assp sample log file originally added
fixed test date thx to steven
tight control of the filter for ASSP
as yaroslav wishes
as daniel desires
changed from DateASSPlike class to DateStrptime
fixed little things
added new date format support for ASSP SMTP Proxy
12 years ago
Enrico Labedzki
fd01649a61
fixed test date thx to steven
12 years ago
Enrico Labedzki
24a8d07c20
added new date format support for ASSP SMTP Proxy
12 years ago
Yaroslav Halchenko
7c409dd24f
Merge branch 'master' of git://github.com/fail2ban/fail2ban
...
* 'master' of git://github.com/fail2ban/fail2ban:
BF: log error only if there were missed config files that couldn't be read
DOC: missing cinfo tags are ok. Log error for self referencing definitions
DOC: s/defination/definition/g learn to spell
ENH: remove stats of config files and use results of SafeConfigParserWithIncludes.read to facilitate meaningful error messages
DOC: ChangeLog for recursive tag substition
ENH: allow recursive tag substitution in action files.
12 years ago
jamesstout
018913db6a
ENH+TST: ssh failure messages for OpenSolaris and OS X
12 years ago
Yaroslav Halchenko
f21566049c
BF: pyinotify backend should also handle IN_MOVED_TO events
12 years ago
Daniel Black
1d9abd1b39
ENH: allow recursive tag substitution in action files.
12 years ago
Daniel Black
0ac8746d05
ENH: Account for views in named filter. By Romain Riviere in gentoo bug #259458
12 years ago
Steven Hiscocks
94956bee84
TST: test all valid loglevels in server testcases
12 years ago
Steven Hiscocks
4c4b60f4b4
TST: Add tag replace and escape test for actions
12 years ago
Yaroslav Halchenko
ffaa9697ee
Adjusting previous PR (MySQL logs) according to my comments
12 years ago
Yaroslav Halchenko
3e6be243bf
Merge branch 'Support_for_mysql_log_example' of https://github.com/arto-p/fail2ban
...
* 'Support_for_mysql_log_example' of https://github.com/arto-p/fail2ban :
Added testcase for MySQL date format to testcases/datedetectortestcase.py and example of MySQL log file.
Added support for MySQL logfiles
Conflicts:
testcases/datedetectortestcase.py -- conflictde with other added test cases
12 years ago
Yaroslav Halchenko
33a31e096a
RF+TST: bring inBanList back from private to protected and enabled its rudimentary unittests
12 years ago
Yaroslav Halchenko
e7184e70f6
ENH: increase waiting to 4 sec for gamin/pyinotify
...
This will be the last gesture from me for the bloody tests:
https://travis-ci.org/kwirk/fail2ban/jobs/5904668
12 years ago
Yaroslav Halchenko
ef3f2b7e99
TST: be more aggressive in cleanup of temp files + use mktemp instead of mkstemp
12 years ago
Yaroslav Halchenko
bf4d4af1d4
ENH(BF?): overload open() (for buffering) within filtertestcase to guarantee atomic writing
...
This is with the hope to further resolve random tests failures
( primarily on fast travis-ci systems ;) )
12 years ago
Yaroslav Halchenko
ab044b75ea
BF: delay check for the existence of config directory until read()
12 years ago
Yaroslav Halchenko
f643e2e907
non-static (get|set)BaseDir for Configurator. fixes #160
...
ConfigReader's (get|set)BaseDir are no longer static as a result of
.d/ support RFing
12 years ago
Yaroslav Halchenko
72b06479a5
ENH: Slight tune ups for fresh SOGo filter + comment into the sample log file
12 years ago
Yaroslav Halchenko
105306e1a8
Merge remote-tracking branch 'pr/117/head' -- SOGo filters
...
* pr/117/head:
An example of failed logins against sogo
Update sogo-auth.conf
Update config/filter.d/sogo-auth.conf
Create sogo-auth.conf
Update config/jail.conf
12 years ago
Yaroslav Halchenko
cd57d9c552
Merge pull request #155 from yarikoptic/master
...
TST+ENH: enable basic (smoke) testing of the default jail.conf + improve postfix filter
12 years ago
Yaroslav Halchenko
91d5736c12
ENH: postfix filter -- react also on (450 4.7.1) with empty from/to. fixes #126
12 years ago
Yaroslav Halchenko
c06b7abb46
TST: basic testing of reading the shipped jail.conf (forcing all jails to be enabled)
12 years ago
Yaroslav Halchenko
7064a411c2
ENH: _copy_lines_between_files -- read all needed, and only then write/flush at once
...
I think this is the one which should resolve
https://github.com/fail2ban/fail2ban/issues/103
12 years ago
Yaroslav Halchenko
52af29a080
ENH: adding ability to incorporate tracebacks into log lines while running tests
12 years ago