fail2ban

Commit Graph

Author	SHA1	Message	Date
Steven Hiscocks	2a37ee2fb7	ENH: Add root user check in xt_recent, and add missing actionstop Thanks to Helmut Grohne on IRC for suggestion	11 years ago
Steven Hiscocks	5c7630c4be	ENH: Allow separate blacklist category for badips.py action	11 years ago
Steven Hiscocks	cf81ddd8e2	BF: Add error handling in badips.py action	11 years ago
Steven Hiscocks	31f4ea59cb	BF: Use abusix Abuse Contact DB to get more accurate abuse addresses Taken from xarf-login-attack action from 0.9 branch by Daniel Black	11 years ago
Steven Hiscocks	dff8909473	ENH: Add badips.com reporting and blacklisting action (python based)	11 years ago
Daniel Black	1e1261ccb4	MRG: from master 2014-01-23	11 years ago
Daniel Black	ca57427080	BF: firewallcmd-ipset had non-working actioncheck	11 years ago
Steven Hiscocks	8221c7ca71	TST+BF: Add tests for python actions, including test for smtp.py Also fix bug when specifying multiple recipients for smtp.py action	11 years ago
Daniel Black	a650178bd1	MRG: merge from master 2014-01-19	11 years ago
Daniel Black	f566cab766	Merge branch 'master' into badips	11 years ago
Daniel Black	cd3e94140c	MRG: complete merge	11 years ago
Yaroslav Halchenko	9a8b449086	DOC: some typos, fixes from Vincent Lefevre	11 years ago
Daniel Black	76468942f9	MRG: complete merge from master	11 years ago
Daniel Black	ab3ded2205	Merge pull request #549 from kwirk/python-actions ENH: Python actions	11 years ago
Steven Hiscocks	69a850d226	DOC: Update docstrings for smtp.py action	11 years ago
Steven Hiscocks	6e63f0ea5a	RF: Change Jails and Actions to Mapping types	11 years ago
Daniel Black	3d1a1afca4	MRG: to more recent 0.9	11 years ago
Daniel Black	5fe75436cc	DOC: DEV NOTES before author names	11 years ago
Steven Hiscocks	80d6f74ee8	RF: Refactor actions further, include removing server proxy interface This allows direct setting of action properties and calling of methods from the fail2ban-client if so required.	11 years ago
Daniel Black	a0c2de3e4d	DOC: document incompatiblity between APF and iptables-* actions. Closes gh-510	11 years ago
Steven Hiscocks	98bf511443	BF: Incorrect number of arguments in smtp.py action connect log	11 years ago
Steven Hiscocks	5b2b59d752	ENH: python actions use initOpts as **kwargs Adds an easy way to handle case where mandatory arguments are missed, or not valid arguments are passed	11 years ago
Steven Hiscocks	6ef911185d	ENH: Add matches to smtp.py action	11 years ago
Daniel Black	391b5fc883	MRG: from master again 2014-01-01	11 years ago
Steven Hiscocks	f37c90cdba	ENH: Python based actions Python actions are imported from action.d config folder, which have .py file extension. This imports and creates an instance of the Action class (Action can be a variable that points to a class of another name). fail2ban.server.action.ActionBase is a base class which can be inherited from or as a minimum has a subclass hook which is used to ensure any imported actions implements the methods required. All calls to the execAction are also wrapped in a try except such that any errors won't cripple the jail. Action is renamed CommandAction, to clearly distinguish it from other actions. Include is an example smtp.py python action for sending emails via smtp. This is work in progress, as looking to add the <matches> and whois elements, and also SSL/TLS support.	11 years ago
Daniel Black	be382dae4d	MRG: ufw changelog conflicts	11 years ago
Daniel Black	1f6ece2a40	Merge pull request #490 from grooverdan/firewallcmd-ipset ENH: add firewallcmd-ipset	11 years ago
Daniel Black	a1a219189f	Merge pull request #493 from grooverdan/xarf-ipmatch ENH: use ipmatches for action xarf-login-attack	11 years ago
Daniel Black	7c0efc8ec8	MRG: merge so far - flushLogs not working yet	11 years ago
Daniel Black	4eedf9d4e1	ENH: use ipmatches for action xarf-login-attack	11 years ago
Daniel Black	a398c51d6c	ENH: simplify actioncheck on firewallcmd-new a little more	11 years ago
Daniel Black	772def1095	Merge pull request #491 from kwirk/ipmatches ENH: Add <ipmatches> and <ipjailmatches> tags + sendmail implementations	11 years ago
Steven Hiscocks	40007abc1d	ENH: Refactor and add database matches and failures for sendmail actions	11 years ago
Daniel Black	1c6c011154	EHH missed trailing .	11 years ago
Daniel Black	868a4ea470	ENH: full abusix disclaimer in action xarf-login-attack	11 years ago
Daniel Black	9fe0a69852	ENH: add firewallcmd-ipset	11 years ago
Daniel Black	4ffc57e14f	ENH: simplify firewallcmd-new actioncheck and provide output samples	11 years ago
Daniel Black	ed816afbcd	ENH: add badips action	11 years ago
Daniel Black	1ff52dfe4d	DOC: document ufw a bit more. Change insertpos default to 1 to allow it to work if the user run ufw enable	11 years ago
Daniel Black	f35345ecaa	ENH: add ufw action based off Guilhem Lettron's work in lp-#701522. Closes gh-455	11 years ago
Daniel Black	13ccebe78f	BF: fix actioncheck in firewallcmd	11 years ago
Steven Hiscocks	0bcff771b8	ENH: Add <ipmatches> and <ipjailmatches> tags Example use filter also added for sendmail-whois with ipmatches rather than grepped lines	11 years ago
Daniel Black	f385439a41	MRG: ChangeLog merge	11 years ago
Daniel Black	36917d7517	BF: action.d/complain - match IP at beginning and end of lines	11 years ago
Daniel Black	135c759dbb	Merge pull request #477 from kwirk/blocklist.de ENH: Added blocklist.de reporting API action	11 years ago
Steven Hiscocks	630dd91dcd	BF: Add [Init] section to blocklist.de action	11 years ago
Steven Hiscocks	b3c173795e	ENH: blocklist.de action error on HTTP response code 4xx	11 years ago
Daniel Black	51f2619878	Merge pull request #473 from grooverdan/whois-missing ENH: Whois missing in actions? Include output to say so	11 years ago
Steven Hiscocks	a19b33cc72	ENH: blocklist.de action added fail2ban version as user agent	11 years ago
Steven Hiscocks	f742ed0e4b	DOC: when to use blocklist.de reporting Taken from commit `1846056606`	11 years ago
Steven Hiscocks	e810ec009d	ENH: Added blocklist.de reporting API action	11 years ago
Daniel Black	4dc51e5def	BF: put notice in email if whois program could not provide more information. Closes gh-471	11 years ago
Daniel Black	97d7f46bb7	DOC: correct grammar - s/Here are more information/Here is more information/	11 years ago
Daniel Black	8aead9ab79	BF: escape quotes when splitting addresses for xarf	11 years ago
Daniel Black	1846056606	DOC: when to use xarf messages to network owner	11 years ago
Daniel Black	8c37d2e4de	ENH: remove dependency on querycontacts	11 years ago
Daniel Black	dd356c3cef	BF: fixed for sendmail and tested the MTA aspects of this action	11 years ago
Daniel Black	9df5f4eec8	BF: remove debugging tee command on xarf-login-attack	11 years ago
Daniel Black	d015f7f4fc	BF/ENH: fixed so xarf-login-attack works	11 years ago
Daniel Black	0495aa098e	BF: grep matches on <ip> shouldn't include other IPs	11 years ago
Daniel Black	95845b7b65	BF: complain action could match too many IP addresses	11 years ago
Daniel Black	5cc7173fd4	ENH: add xarf email sender for login-attack type	11 years ago
Daniel Black	56b6bf7d25	ENH: reduce firewalld-cmd-new -> firewallcmd-new	11 years ago
Daniel Black	86a0a5962a	BF: revert to fail2ban- prefix as f2b- was intended for 0.9	11 years ago
Daniel Black	9e53892708	BF: did remove instead of move	11 years ago
Daniel Black	af4feb0c92	Actions to have f2b- as prefix instead of fail2ban- as per #462	11 years ago
Daniel Black	fb666b69ff	BF: firewall-cmd-direct-new was too long. Thanks Joel.	11 years ago
Daniel Black	dc154c792e	BF: add init section with name for action.d/apf. Closes #398	11 years ago
Daniel Black	87f68d7564	firewalld-0.3.8 release that support --remove-rules out so documenting this.	11 years ago
Daniel Black	5eddd5d12d	DOC: document required firewalld version as > 0.3.7.1	11 years ago
Daniel Black	8ac6081555	ENH: fix to use upstream --remove-rules https://fedorahosted.org/firewalld/ticket/10	11 years ago
Daniel Black	c2b76d1fd0	Merge pull request #397 from yarikoptic/_enh/unify_default_strings DOC: enh/unify "Default:" strings	11 years ago
Daniel Black	b4cbf82912	DOC: remove Default: on action firewall-cmd-direct-new	11 years ago
Yaroslav Halchenko	4149c7495d	Options in actions to be specified in jails have no "Default"s besides those specified in the files -- thus removing from comments	11 years ago
Daniel Black	f1bb08aa6a	ENH: base blocktype off iptables-blocktype.conf for firewall-cmd-direct-new.conf like other iptables based actions	11 years ago
Daniel Black	12f7ea7ec4	DOC: remove excessive comments from firewall-cmd-direct-new	11 years ago
Daniel Black	0d8d1ae26c	ENH: new action.d/firewall-cmd-direct-new.conf from Redhat Bugzilla #979622	11 years ago
Daniel Black	1a5e17f2a3	BF: use blocktype for iptables-ipset-proto6*	11 years ago
Daniel Black	dcb845f17c	ENH: add iptables-ipset-proto6-allports for blocking all ports	11 years ago
Daniel Black	e12d389c65	MRG/DOC: jail.conf resolution, ChangeLog fixes	11 years ago
Mark McKinstry	b6bf26c9f2	dont' need to set a default name	11 years ago
Mark McKinstry	2668adc896	Merge branch 'master' of github.com:fail2ban/fail2ban	11 years ago
Mark McKinstry	1af4543aca	ability to name the jail that banned the IP with apf	11 years ago
Mark McKinstry	dd9ee4c39a	quotes around the comment put in apf's deny_hosts.rules file	11 years ago
Mark McKinstry	e64493c328	use human readable/longer options when banning and un-banning IPs with apf	11 years ago
Mark McKinstry	c692912a82	don't hardcode absolute path for apf firewall	11 years ago
Mark McKinstry	66aff43d68	remove un-needed '$' line	11 years ago
Beau Raines	060bd45295	ENH - Added server name to subject line in email notifications This is useful when fail2ban is running on multiple servers and keeping the notifictions separate and knowing which machine is "under attack".	11 years ago
Daniel Black	ad291d7e38	Merge pull request #346 from grooverdan/bsd-ipfw-default-unreach-port BF: action.d/bsd-ipfw - use blocktype instead of unused action for icmp ...	11 years ago
Daniel Black	4face1f3e7	MRG: resolve conficts in action.d/osx-ipfw design	11 years ago
Andy Fragen	d258a51a23	after some research it looks like setting to unreachable better than deny	11 years ago
Andy Fragen	fe557e5900	more specific actionunban	11 years ago
Andy Fragen	a4884f82cd	add mods from grooverdan and fix actionunban actionunban still not working in grooverdan's mod. I made this one grep both <ip> and <port>. It should be more specific if the same <ip> is banned on multiple ports.	11 years ago
Daniel Black	f2bcf84893	BF: action.d/bsd-ipfw - use blocktype instead of unused action for icmp rejecting blocked packets	11 years ago
Daniel Black	749f215089	ENH: port optional	11 years ago
Daniel Black	8b22fa15b5	BF: reverted to simplier random rulenum. If your machine is handling 1000s of block the addition complexity isnt what you want	11 years ago
Daniel Black	b31799a322	ENH: add action.d/osx-afctl anonymously contributed on f2b wiki	11 years ago
Daniel Black	5741348f45	ENH: more options and ruggedness to prevent unintensional consequences	11 years ago
Daniel Black	52bd0f86a8	Merge branch 'osx-ipfw' of https://github.com/afragen/fail2ban into osx	11 years ago
Daniel Black	7cc3e8a8c0	BF: Invert expression on actionstop in bsd-ipfw.conf to ensure exit status 0 on success. Closes gh-343	11 years ago
Andy Fragen	ef504c869f	added osx specific ipfw action with random rulenum	11 years ago
Daniel Black	6a36ff1a4a	BF: order mailx arguments with dest email address last - redhat bugzilla 998020. Closes gh-328	11 years ago
Orion Poplawski	31a78b2711	Use /var/run/fail2ban in config/action.d/dummy.conf	11 years ago
Daniel Black	ab10664b57	ENH: action.d/hostsdeny to take daemon_list arguement as suggested in README.Solaris	12 years ago
Daniel Black	1d6d5a7aae	DOC: ChangeLog merge confict	12 years ago
Alexander Dietrich	da594075f3	Move sendmail settings to common file, make sender name configurable	12 years ago
Daniel Black	aebd24ec54	BF: replace with ed so its cross platform, fixes permission problem gh-266, and Yaroslav doesn't revert to perl	12 years ago
Yaroslav Halchenko	89e06bba15	BF: blocktype must be defined within [Init] -- adding [Init] section. Close #232	12 years ago
Yaroslav Halchenko	5accc10a47	Merge pull request #206 from grooverdan/bsd_ipfw NF: BSD ipfw	12 years ago
Yaroslav Halchenko	0ae49ab11e	Merge branch 'bsd_pf' of https://github.com/grooverdan/fail2ban * 'bsd_pf' of https://github.com/grooverdan/fail2ban: BF: missed MANIFEST include DOC: add jail.conf entry for pf DOC: credit for pf action. Origin: http://svnweb.freebsd.org/ports/head/security/py-fail2ban/files/patch-pf.conf?view=log ENH: pf action thanks to Nick Hilliard <nick@foobar.org>. Conflicts: ChangeLog	12 years ago
Yaroslav Halchenko	e85914cef8	Merge pull request #215 from grooverdan/reject_no_drop_by_default ENH: add blocktype to all relevant actions and change default action to reject	12 years ago
Daniel Black	9c03ee6d9e	ENH: consolidate where blocktype is defined for iptables rules	12 years ago
Daniel Black	c7fd777966	BF: default type to unreachable	12 years ago
Yaroslav Halchenko	2143cdff39	Merge: opensolaris docs/fixes, no 'sed -i' in hostsdeny, sshd regex tuneups Origin: from https://github.com/jamesstout/fail2ban * 'OpenSolaris' of https://github.com/jamesstout/fail2ban: ENH: Removed unused log line BF: fail2ban.local needs section headers ENH: Use .local config files for logtarget and jail ENH+TST: ssh failure messages for OpenSolaris and OS X ENH: fail message matching for OpenSolaris and OS X ENH: extra daemon info regex ENH: actionunban back to a sed command Readme for config on Solaris create socket/pid dir if needed Extra patterns for Solaris change sed to perl for Solaris Conflicts: config/filter.d/sshd.conf	12 years ago
Daniel Black	3b4a7b7926	ENH: add blocktype to all relevant actions. Also default the rejection to a ICMP reject rather than a drop	12 years ago
Daniel Black	0c5a9c53e1	ENH: pf action thanks to Nick Hilliard <nick@foobar.org>.	12 years ago
Daniel Black	b6d0e8ad9c	ENH: add ipfw rule for bsd using the tables.	12 years ago
Daniel Black	495f2dd877	DOC: purge of svn tags	12 years ago
jamesstout	b7795addd0	ENH: actionunban back to a sed command per https://github.com/fail2ban/fail2ban/pull/182#discussion_r3999128	12 years ago
Daniel Black	945ad3d9e6	BF: ensure dates in email are in the C locale. Thanks iGeorgeX	12 years ago
jamesstout	de98e3dabd	change sed to perl for Solaris	12 years ago
Daniel Black	67544d1dd6	DOC: tags are documented in the jail.conf(5) man page	12 years ago
Yaroslav Halchenko	5e5eaaf838	Merge pull request #134 from grooverdan/misc-fixes BF: fail2ban client can't handle multi word setcinfo or action[*] values	12 years ago
Pascal Borreli	a2b29b4875	Fixed typos	12 years ago
Daniel Black	a0f088be25	ENH: typo + head -1 has been deprecated for 10+ years.	12 years ago
Yaroslav Halchenko	d5ae28facf	Merge pull request #104 from gebi/t/route add support for blocking through blackhole routes	12 years ago
Daniel Black	47b1ee39d8	add blocking type	12 years ago
Yaroslav Halchenko	8cf006827e	BF: remove path from grep call in sendmail-whois-lines.conf Closes: gh-118	12 years ago
Michael Gebetsroither	f9b78ba927	add support for blocking through blackhole routes	12 years ago
Daniel Black	9221886df6	more documentation and optimisations/fixes based on testing	12 years ago
Daniel Black	abd5984234	base ipset support	12 years ago
Mark McKinstry	95de9c1a97	add support for the APF firewall	12 years ago
Yaroslav Halchenko	2a225aa6ee	Added a warning within "complaint.conf" action about care with enabling it	12 years ago
Yaroslav Halchenko	80b191c7fd	BF: anchor chain name in actioncheck's for iptables actions (Closes: #672228 )	13 years ago
Yaroslav Halchenko	35201f6690	Merge remote-tracking branch 'gh-keszybz/master' * gh-keszybz/master: NF: xt_recent-echo action	13 years ago
Zbigniew Jędrzejewski-Szmek	321670487e	NF: xt_recent-echo action The default configuration can only be run by root. To actually support running as a different user, the setup action must be disabled.	13 years ago
Leonardo Chiquitto	4502adfe69	Fix comments to reflect code Commit `638bb6652` changed some defaults but the comments still point to the previous values.	13 years ago
Tom Hendrikx	9fa54cf233	Add Date: header for sendmail*.conf actions According to rfc2822, Date: headers are not optional. Added these to all sendmail action templates, format specification should conform to rfc and be portable across multiple platforms.	13 years ago
Yaroslav Halchenko	3831fbf98b	ENH: add <chain> to action.d/iptables*. Thanks Matthijs Kooijman: see http://bugs.debian.org/515599 git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@771 a942ae1a-1317-0410-a47c-b1dcaea8d605	14 years ago
Yaroslav Halchenko	638bb66523	BF: Use /var/run/fail2ban instead of /tmp for temp files in actions: see http://bugs.debian.org/544232 It should be robust since /var/run/fail2ban is guaranteed to exist to carry the socket file, and it will be owned by root (or some other dedicated fail2ban user) thus avoiding possibility for the exploit git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@767 a942ae1a-1317-0410-a47c-b1dcaea8d605	14 years ago
Cyril Jaquier	e16c18d091	- Added NetBSD ipfilter (ipf command) action. Thanks to Ed Ravin. Tracker #2484115 . git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@724 a942ae1a-1317-0410-a47c-b1dcaea8d605	16 years ago
Cyril Jaquier	6cd56802bb	- Added actions to report abuse to ISP, DShield and myNetWatchman. Thanks to Russell Odom. git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@717 a942ae1a-1317-0410-a47c-b1dcaea8d605	16 years ago
Cyril Jaquier	9ed39a4387	- Send file if the number of lines is greater or equal and not only equal to the limit. git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@701 a942ae1a-1317-0410-a47c-b1dcaea8d605	17 years ago
Cyril Jaquier	55d6baa66d	- Added svn:keywords git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@668 a942ae1a-1317-0410-a47c-b1dcaea8d605	17 years ago
Cyril Jaquier	f77057d3dd	- Fixed Debian bug #462060 git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@666 a942ae1a-1317-0410-a47c-b1dcaea8d605	17 years ago
Cyril Jaquier	17e31b167e	- Replaced "reject" with "drop" in shorwall action. Fix #1854875 git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@661 a942ae1a-1317-0410-a47c-b1dcaea8d605	17 years ago
Cyril Jaquier	0afa6fb2be	- Replaced "echo" with "printf" in actions. Fix #1839673 git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@660 a942ae1a-1317-0410-a47c-b1dcaea8d605	17 years ago
Cyril Jaquier	f0399ca5a4	- Absorbed some Debian patches. Thanks to Yaroslav Halchenko. - Renamed actionend to actionstop. git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@658 a942ae1a-1317-0410-a47c-b1dcaea8d605	17 years ago
Cyril Jaquier	c40534123c	- Fixed ipfw action script. Thanks to Nick Munger git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@623 a942ae1a-1317-0410-a47c-b1dcaea8d605	17 years ago
Cyril Jaquier	26c54c4538	- Added new action iptables-allports. Thanks to Yaroslav Halchenko git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@606 a942ae1a-1317-0410-a47c-b1dcaea8d605	18 years ago

1 2 3 4 5 ...

278 Commits (ac27c9cb96357321ceabf55e520f7f0963726abe)