github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
2397 Commits
32 Branches
229 Tags
17 MiB
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a9f0545d8f'
${ noResults }
Commit Graph

749 Commits (a9f0545d8fbb88ed5be5518dca1b706009b1e794)

Author SHA1 Message Date
Daniel Black be382dae4d MRG: ufw changelog conflicts
11 years ago
Daniel Black 1f6ece2a40 Merge pull request #490 from grooverdan/firewallcmd-ipset
11 years ago
Daniel Black ea2a13946e TST: more test of filters
11 years ago
Daniel Black c9cfdca396 ENH: add filter for apache-modsecurity
11 years ago
Daniel Black ddac79c15c TST: include blank ignorecommand in jail.conf to indicate default value and to raise test coverage
11 years ago
bes.internal ebd89ec077 New ignorecommand that is added to the ignoreip list from output of an external program
11 years ago
Daniel Black 382d68f0fe DOC: perfork model for apache log format
11 years ago
Daniel Black 1b7df1181f BF: apache-2.4 log format fix. Closes gh-516
11 years ago
Yaroslav Halchenko 7af58b9984 Merge branch 'apache-noscripts' of https://github.com/grooverdan/fail2ban
11 years ago
Daniel Black a9b7d33c51 ENH: apache-noscript now matched php-cgi scripts. Closes gh-503
11 years ago
Daniel Black a1a219189f Merge pull request #493 from grooverdan/xarf-ipmatch
11 years ago
Daniel Black ed2f46759c MRG: restore accidently deleted pam comment in jail.conf
11 years ago
Daniel Black 44a0981495 MRG: fix recidive filter
11 years ago
Steven Hiscocks d22716ab63 ENH: Add nsd filter and amend DateEpoch to match date format
11 years ago
Daniel Black 7c0efc8ec8 MRG: merge so far - flushLogs not working yet
11 years ago
Daniel Black 4eedf9d4e1 ENH: use ipmatches for action xarf-login-attack
11 years ago
Daniel Black a398c51d6c ENH: simplify actioncheck on firewallcmd-new a little more
11 years ago
Daniel Black 772def1095 Merge pull request #491 from kwirk/ipmatches
11 years ago
Steven Hiscocks 40007abc1d ENH: Refactor and add database matches and failures for sendmail actions
11 years ago
Steven Hiscocks 2deb76e3f9 Merge pull request #492 from grooverdan/abusix-disclaimer
11 years ago
Daniel Black 1c6c011154 EHH missed trailing .
11 years ago
Daniel Black 868a4ea470 ENH: full abusix disclaimer in action xarf-login-attack
11 years ago
Daniel Black 9fe0a69852 ENH: add firewallcmd-ipset
11 years ago
Daniel Black 4ffc57e14f ENH: simplify firewallcmd-new actioncheck and provide output samples
11 years ago
Daniel Black ed816afbcd ENH: add badips action
11 years ago
Daniel Black 1ff52dfe4d DOC: document ufw a bit more. Change insertpos default to 1 to allow it to work if the user run ufw enable
11 years ago
Daniel Black f35345ecaa ENH: add ufw action based off Guilhem Lettron's work in lp-#701522. Closes gh-455
11 years ago
Daniel Black 13ccebe78f BF: fix actioncheck in firewallcmd
11 years ago
Steven Hiscocks 0bcff771b8 ENH: Add <ipmatches> and <ipjailmatches> tags
11 years ago
Steven Hiscocks 2c3dbc8046 BF: In 0.9 recidive bans come from fail2ban.server.actions
11 years ago
Steven Hiscocks b7d1579c9d MRG: branch 'kwirk/database' into 0.9 - gh-480
11 years ago
Steven Hiscocks e18af48e34 ENH: Database now optional, by setting dbfile to "None"
11 years ago
Daniel Black 9d532828fc BF: multiple _ separated values according to http://wiki.squid-cache.org/SquidFaq/SquidLogs#Squid_result_codes. Thanks Steven
11 years ago
Daniel Black 66374913ec ENH: add squid filter
11 years ago
Daniel Black db4c21acde BF/DOC: fix filename in documentation for filter.d/proftpd
11 years ago
Daniel Black e8eab11615 DOC: proftp - turn off ReverseDNS
11 years ago
Daniel Black f385439a41 MRG: ChangeLog merge
11 years ago
Daniel Black 36917d7517 BF: action.d/complain - match IP at beginning and end of lines
11 years ago
Steven Hiscocks d8c7bca9b0 BF: Fix dbpurgeage default value, and change default dbfile extension
11 years ago
Steven Hiscocks bbadef847b ENH: Add fail2ban persistent data storage
11 years ago
Daniel Black 135c759dbb Merge pull request #477 from kwirk/blocklist.de
11 years ago
Steven Hiscocks 630dd91dcd BF: Add [Init] section to blocklist.de action
11 years ago
Steven Hiscocks b3c173795e ENH: blocklist.de action error on HTTP response code 4xx
11 years ago
Daniel Black 51f2619878 Merge pull request #473 from grooverdan/whois-missing
11 years ago
Daniel Black e07ba41870 Merge pull request #463 from grooverdan/firewall-cmd-direct-new-length-too-long
11 years ago
Steven Hiscocks a19b33cc72 ENH: blocklist.de action added fail2ban version as user agent
11 years ago
Steven Hiscocks f742ed0e4b DOC: when to use blocklist.de reporting
11 years ago
Steven Hiscocks e810ec009d ENH: Added blocklist.de reporting API action
11 years ago
Daniel Black 4dc51e5def BF: put notice in email if whois program could not provide more information. Closes gh-471
11 years ago
Daniel Black 97d7f46bb7 DOC: correct grammar - s/Here are more information/Here is more information/
11 years ago
Daniel Black 8aead9ab79 BF: escape quotes when splitting addresses for xarf
11 years ago
Daniel Black 1846056606 DOC: when to use xarf messages to network owner
11 years ago
Daniel Black 8c37d2e4de ENH: remove dependency on querycontacts
11 years ago
Daniel Black bfd435091d ENH: jail examples for xarf-login-attack
11 years ago
Daniel Black dd356c3cef BF: fixed for sendmail and tested the MTA aspects of this action
11 years ago
Daniel Black 9df5f4eec8 BF: remove debugging tee command on xarf-login-attack
11 years ago
Daniel Black d015f7f4fc BF/ENH: fixed so xarf-login-attack works
11 years ago
Daniel Black 0495aa098e BF: grep matches on <ip> shouldn't include other IPs
11 years ago
Daniel Black 95845b7b65 BF: complain action could match too many IP addresses
11 years ago
Daniel Black 5cc7173fd4 ENH: add xarf email sender for login-attack type
11 years ago
Yaroslav Halchenko 3a5983ab0b Merge branch 'bf/syslog-format' of https://github.com/yarikoptic/fail2ban
11 years ago
Daniel Black f7504d5b64 MRG: conflict in THANKS
11 years ago
Daniel Black 56b6bf7d25 ENH: reduce firewalld-cmd-new -> firewallcmd-new
11 years ago
Daniel Black 04438cd1a1 BF/ENH: mysql jail - rename to mysql-syslog to be consistent with 0.8.13. Add port to syslog defination. Document mysql configuration required for mysql jails
11 years ago
Daniel Black 3f4d179612 BF: smtps not an IANA port - from #447
11 years ago
Daniel Black fe9e077acf BF: correct spelling of port for solid-pop3 jail in jail.conf
11 years ago
Daniel Black 86a0a5962a BF: revert to fail2ban- prefix as f2b- was intended for 0.9
11 years ago
Yaroslav Halchenko 25e967f23b Merge branch 'mysqld-syslog-iptables-name-too-long' of https://github.com/grooverdan/fail2ban
11 years ago
Daniel Black b9b2ddf996 BF: smtps not IANA standard. Closes #447
11 years ago
Daniel Black cade746307 BF: jail name mysqld-syslog-iptables too long. removed -iptables. Thanks Stefan (#447)
11 years ago
Daniel Black 9e53892708 BF: did remove instead of move
11 years ago
Daniel Black af4feb0c92 Actions to have f2b- as prefix instead of fail2ban- as per #462
11 years ago
Daniel Black fb666b69ff BF: firewall-cmd-direct-new was too long. Thanks Joel.
11 years ago
Daniel Black 227f27ce6b ENH: added multiline filter for sshd filter
11 years ago
Daniel Black f80fa7d7a0 Merge pull request #456 from grooverdan/apffix
11 years ago
Daniel Black 13223c33f5 MRG: recidive-protocol-all
11 years ago
Daniel Black dc154c792e BF: add init section with name for action.d/apf. Closes #398
11 years ago
Yaroslav Halchenko a26d4f42b7 ENH: added optional [PID] matching in recidive.conf
11 years ago
Daniel Black 9a82bc3c61 BF: kernel messages can have space. Thanks ag4ve(shawn). Closes #448
11 years ago
Daniel Black 98eacdf333 MRG/BF: merge from master. Fix bugs in iso8601
11 years ago
Yaroslav Halchenko 629e9ae445 Merge pull request #443 from grooverdan/apache-authfix
11 years ago
Daniel Black 284f811c91 BF: apache filters using error log weren't matched when referer existed in HTTP header
11 years ago
Daniel Black 1ea68b2d0c DOC: filter.d/solid-pop3d - document lack of PAM support. Thanks to Jacques for the log messages
11 years ago
Daniel Black 0eea0a35db ENH: filter.d/solid-pop3d - added log messages and regexes
11 years ago
Daniel Black dab2ddb9da ENH: recidive jail to block all protocols. Closes #440
11 years ago
Daniel Black b3b9ea4559 ENH: jail for solid-pop3d
11 years ago
Daniel Black 88eff70774 ENH: filter.d/solid-pop3d added
11 years ago
Daniel Black 1ac7b53cad MRG: merge from master
11 years ago
Daniel Black 286d78e13c Merge pull request #430 from grooverdan/apache-overflows
11 years ago
Daniel Black 50ca16e50e Merge pull request #431 from grooverdan/apache-noscript
11 years ago
Daniel Black 947c6ff9cc Merge pull request #433 from grooverdan/asterisk
11 years ago
Daniel Black 38503a5848 Merge pull request #434 from grooverdan/dos-resistant-dropbear
11 years ago
Daniel Black 62b1f98dff Merge pull request #435 from grooverdan/dos-resistant-exim
11 years ago
Daniel Black be60518218 BF/ENH: DoS resistant roundcube-auth with test cases and more variation in IMAP error given
11 years ago
Daniel Black 52972164a2 BF: exim filter to be DoS resistant
11 years ago
Daniel Black c272573fe3 ENH: DoS resistant dropbear filter
11 years ago
Daniel Black eb9663eb4f BF/ENH: asterisk connection ID is a hex not decimal number. Add "Rejecting unknown SIP connection from <HOST>" regex thanks to Jonathan Lanning
11 years ago
Daniel Black 648d48c355 ENH: apache-2.4 message IDs for filter apache-noscript
11 years ago
Daniel Black a4718eb644 ENH: apache-overflow filter to have HTTP-2.4 message IDs and test samples
11 years ago
Daniel Black 87516eb92b ENH: apache-overflows - more detail on "request failed: URI too long (longer than %d)" with test case
11 years ago
Daniel Black c5021b55f6 Merge pull request #427 from yarikoptic/bf/nginx-regex-injection
11 years ago
Yaroslav Halchenko ccd26578ec Merge pull request #425 from grooverdan/asterisk-simplify
11 years ago
Yaroslav Halchenko ac061155f0 BF: anchor introduced nginx-http-auth at the end
11 years ago
Yaroslav Halchenko ea8fce6308 Merge pull request #426 from yarikoptic/bf/openssh6.3-regex-injection
11 years ago
Yaroslav Halchenko bf245f9640 DOC: adding DEV Notes for for non-greedy matchin within sshd.conf
11 years ago
Daniel Black d6bbe03861 Merge pull request #424 from grooverdan/nginx-auth
11 years ago
Yaroslav Halchenko 750e0c1e3d BF: disallow exploiting of non-greedy .* in previous fix by providing too long rhost -- do not impose length limits for user-provided input
11 years ago
Yaroslav Halchenko abb012ae5c BF: fixing injection for OpenSSH 6.3 -- making .* before <HOST> non-greedy
11 years ago
Daniel Black a8a1310098 ENH: sendmail-spam - loose regex on email and domain bits so more likely to match. Added dev notes and author attribution/blame
11 years ago
Daniel Black d7560d4041 ENH: condense asterisk regexs for speed
11 years ago
Daniel Black ab9d921162 BF: missed action in nginx-http-auth
11 years ago
Daniel Black a148d35d70 ENH: add filter.d/nginx-http-auth. Partially forfills #405
11 years ago
Yaroslav Halchenko 4522308354 ENH: regenerated config/filter.d/apache-badbots.conf
11 years ago
Daniel Black cb982ef921 ENH: multiline filter for sendmail-spam. Closes gh-418
11 years ago
Daniel Black 0730db9b2b Merge pull request #416 from grooverdan/debian-bug-665925-wuftpd-pam
11 years ago
Daniel Black e55b24c533 BF: fix dovecot filter for newer failure message. Closes Debian bug #709324
11 years ago
Daniel Black 8b54523316 BF: fix to filter.d/wuftp to support pam authentication - Debian bug #665925
11 years ago
Daniel Black ac1f45d18c Merge pull request #412 from grooverdan/firewalld
11 years ago
Daniel Black 87f68d7564 firewalld-0.3.8 release that support --remove-rules out so documenting this.
11 years ago
Daniel Black ee1edfbf0c BF: remove duplication definition secion in webmin-auth
11 years ago
Daniel Black 60006bd70f BF: remove duplication definition secion in webmin-auth
11 years ago
Daniel Black 47d35c9d80 MRG: 0.8.11 to 0.9
11 years ago
Daniel Black b5c10488c1 Merge pull request #409 from grooverdan/filter-doco
11 years ago
Daniel Black 5eddd5d12d DOC: document required firewalld version as > 0.3.7.1
11 years ago
Daniel Black 27d257d5a6 Merge pull request #408 from grooverdan/dropbear
11 years ago
Daniel Black 8ac6081555 ENH: fix to use upstream --remove-rules
11 years ago
Daniel Black 93de46ac72 BF: maxretry=5 for ssh as per DEVELOP. align = in jail.conf
11 years ago
Daniel Black c3f9c9aa60 BF: filter.d/dropbear
11 years ago
Daniel Black 89fd792dfb DOC: in filters, put user relevant doc at top, and developer info at bottom, and remove all the repetative blindly copied stuff that appears in the jail man page
11 years ago
Daniel Black de9977441a DOC: move named and mysql instructions into the filters from jail.conf
11 years ago
Daniel Black 7ab909d056 DOC: space out jail.conf consistantly
11 years ago
Daniel Black 95f3f38682 MRG: merge ChangeLog and jail.conf
11 years ago
Daniel Black e3150044fd BF: fix selinux
11 years ago
Daniel Black 0f85aef609 Merge pull request #407 from grooverdan/dovecot-jail
11 years ago
Daniel Black a991adb83f ENH: add submission, smtps and sieve to blocked ports since this also typically rely on dovecot auth
11 years ago
Daniel Black 8412303131 ENH: dovecot jail examples
11 years ago
Daniel Black cde389cadc ENH: additional tweek to dovecot regex based on http://chrisgilligan.com/portfolio/fail2ban-regex/
11 years ago
Daniel Black 0c14707201 ENH: add dovecot jail
11 years ago
Daniel Black d451c2a231 FIX: vsftp improvements from Rich Mellor on mailing list
11 years ago
Daniel Black b61fe0f12d Merge pull request #378 from grooverdan/sasl
11 years ago
Daniel Black 4ecc063bd0 ENH: rename filter.d/sasl -> filter.d/postfix-sasl
11 years ago
Daniel Black c2b76d1fd0 Merge pull request #397 from yarikoptic/_enh/unify_default_strings
11 years ago
Daniel Black b4cbf82912 DOC: remove Default: on action firewall-cmd-direct-new
11 years ago
Yaroslav Halchenko 4149c7495d Options in actions to be specified in jails have no "Default"s besides those specified in the files -- thus removing from comments
11 years ago
Yaroslav Halchenko d12eb2526a Fixing up default values in fail2ban.conf + unifying formatting
11 years ago
Daniel Black f1bb08aa6a ENH: base blocktype off iptables-blocktype.conf for firewall-cmd-direct-new.conf like other iptables based actions
11 years ago
Daniel Black 12f7ea7ec4 DOC: remove excessive comments from firewall-cmd-direct-new
11 years ago
Daniel Black 0d8d1ae26c ENH: new action.d/firewall-cmd-direct-new.conf from Redhat Bugzilla #979622
11 years ago
Daniel Black 123ad1cc9c MRG: Merge branch 'asterisk-common-jail'
11 years ago
Daniel Black 8421007f32 MRG: merge man/jail.conf.5 entries
11 years ago