3274 Commits (b3ed19b36adb17bfbd550bd0e32aac34e9ab8243)

 

All Branches   

Search

Author	SHA1	Message	Date
Yaroslav Halchenko	b3ed19b36a	DOC: tune up to jail.conf.5 - some line breaks, typos etc	9 years ago
Yaroslav Halchenko	6af6e40b62	Merge pull request #1241 from sebres/known/param-tag ... New interpolation feature for definition config readers - `<known/parameter>`	9 years ago
Yaroslav Halchenko	441dffbe2a	ENH: Pruned some "pragma: no cover"s in fail2banregex ... This code should and can be unit-tested, so no reason to keep it with no cover	9 years ago
Yaroslav Halchenko	584f3af5af	Merge pull request #1240 from yarikoptic/master ... ENH: .mailmap file to bring some names together for git shortlog -sn	9 years ago
Yaroslav Halchenko	aa0588dd1a	Merge pull request #1250 from sebres/_sb/fail2ban-regex-coverage ... RF: fail2ban-regex code moved into client/ codebase, unittested	9 years ago
sebres	689dfa1e6a	debuggexURL fixed for wrong encoded character; test cases extended;	9 years ago
sebres	38f09b417a	fail2ban-regex command line (after fail2ban-regex functionality moved to the client)	9 years ago
sebres	0877d66228	fail2ban-regex moved to the client + test cases for initial coverage added	9 years ago
sebres	46b116e86a	filter test cases improved + log captured inside such tests + python 3.x compatibility; ... changelog entry;	9 years ago
sebres	a42aa726ab	fixed fail2ban-regex reads invalid character (in sense of given encoding); continuing to process line ignoring invalid characters (still has no test cases). ... filter test cases added for same issue inside fail2ban-server / fail2ban-testcases; closes gh-1248	9 years ago
Yaroslav Halchenko	b100ee6302	Merge pull request #1244 from opoplawski/typo ... Fix typo	9 years ago
Orion Poplawski	ba76f4ca2f	Fix typo	9 years ago
sebres	94cffece12	New interpolation feature for definition config readers - `<known/parameter>`, as extension to interpolation `%(known/parameter)s`, that does not works for filter and action init parameters;	9 years ago
Yaroslav Halchenko	b40c6cbd9a	ENH: .mailmap file to bring some names together for git shortlog -sn	9 years ago
sebres	5767191988	fixed misleading documentation of `banaction`	9 years ago
sebres	fcf03790f4	fixed misleading documentation of `banaction`	9 years ago
Serg G. Brester	eef7771b4e	Merge pull request #1238 from sebres/fix/gh-1216 ... Fixed directly defined banaction for allports jails like pam-generic, recidive, etc	9 years ago
sebres	e825e977cc	Nginx log paths extended (prefixed with "*" wildcard) ... closes gh-1237	9 years ago
sebres	f359ed8c36	Fixed directly defined banaction for allports jails like pam-generic, recidive, etc with new default variable `banaction_allports` (+ man entries for both variables added); ... closes gh-1216	9 years ago
sebres	53b39162a1	Shortly, much faster and stable version of regexp (possible because expression is start-anchored and does not contains closely to catch-all sub expressions)	9 years ago
sebres	6884593ab8	New filter `nginx-limit-req` ban hosts, that were failed through nginx by limit request processing rate (ngx_http_limit_req_module)	9 years ago
sebres	eb87638ead	ChangeLog entry for OpenHAB home automation filter (gh-1223)	9 years ago
1technophile	2861a957a9	filter for openhab domotic software authentication failure with the rest api and web interface + test cases; ... closes gh-1223	9 years ago
Serg G. Brester	26517b0464	Merge pull request #1226 from pablorf-dev/master ... Minor fix and enhancement (fake google domains)	9 years ago
Pablo Rodriguez Fernandez	2c576c64f8	Change domain filter regex ... Change domain filter regex since there are other Google crawlers. See "Google crawlers" <https://support.google.com/webmasters/answer/1061943?hl=en>	9 years ago
Pablo Rodriguez Fernandez	74fcb219ab	Enhanced Google domain detection in apache-fakegooglebot ... Previously, an attacker could fake a domain like crawl-1-1-1-1.googlebot.com.fake.net and get resolved. This change avoids to resolve fake Google domains.	9 years ago
Pablo	7e6964dd9d	Fix section jail.conf.5 manpage ... The section of jail.conf manpage is wrong, should be 5, not 10	9 years ago
Serg G. Brester	3a5d4fdd26	Merge pull request #1221 from pablorf-dev/master ... Add check in apache-fakegooglebot to protect against PTR fake record (gh-1221)	9 years ago
Pablo Rodriguez Fernandez	a28e6b442e	Add check in apache-fakegooglebot to protect against PTR fake record ... An attacker may return a PTR record which fakes a Googlebot's domain name. This modification resolves the PTR records to verify it. See "Verifying Googlebot": <https://support.google.com/webmasters/answer/80553?vid=1-635800030504666679-1963774919>	9 years ago
Yaroslav Halchenko	16443f7b05	Merge pull request #1219 from agentmoller001/patch-1 ... Updated route.conf to clear warnings (Closes #1026)	9 years ago
agentmoller001	617302fcc2	Updated route.conf to clear warnings ... Does not throw warnings when starting/restarting by adding three lines of code.	9 years ago
Yaroslav Halchenko	6fb5e3a494	removed outdated and "problematic" .pydevproject	9 years ago
Serg G. Brester	42598fbf26	Merge pull request #1215 from paulmenzel/strip-trailing-whitespace-from-files-under-files ... files: Strip trailing whitespace from files	9 years ago
Paul Menzel	078e2048f2	files: Strip trailing whitespace from files ... Run the command `StripWhitespace` from the [Vim Better Whitespace Plugin](https://github.com/ntpeters/vim-better-whitespace).	9 years ago
sebres	2696ede251	mysqld-auth: Updated "Access denied ..." regex for MySQL 5.6 and later ... closes gh-1211	9 years ago
sebres	61ac481703	IpToName test case fixed ('66.249.66.1' resp. 'crawl-66-249-66-1.googlebot.com' seems to be unresolvable)	9 years ago
Serg G. Brester	68db52474d	Merge pull request #1206 from kevinoid/ssh-match-auth-fail ... ssh.conf: Fix disconnect "Auth fail" matching	9 years ago
Kevin Locke	2a5c93cfb5	Update ChangeLog and THANKS for "Auth fail" changes ... Document the changes from 36919d9f in the ChangeLog and add myself to the THANKS file (at @sebres suggestion). Signed-off-by: Kevin Locke <kevin@kevinlocke.name>	9 years ago
Kevin Locke	42b0e9258d	Test cases for ssh.conf disconnect "Auth fail" ... Add test coverage for the new disconnect "Auth fail" matching added in 36919d9f. Signed-off-by: Kevin Locke <kevin@kevinlocke.name>	9 years ago
Kevin Locke	36919d9f97	ssh.conf: Fix disconnect "Auth fail" matching ... The regex for matching against "Auth fail" disconnect log message does not match against current versions of ssh. OpenSSH 5.9 introduced privilege separation of the pre-auth process, which included [logging through monitor.c](http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/monitor.c.diff?r1=1.113&r2=1.114) which adds " [preauth]" to the end of each message and causes the log level to be prepended to each message. It also fails to match against clients which send a disconnect message with a description that is either empty or includes a space, since this is the content in the log message after the disconnect code, per [packet.c:1785](http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/packet.c?annotate=1.215), which was matched by \S+. Although I have not observed this yet, I couldn't find anything which would preclude it in [RFC 4253](https://tools.ietf.org/html/rfc4253#section-11.1) and since the message is attacker-controlled it provides a way to avoid getting banned. This commit fixes both issues. Signed-off-by: Kevin Locke <kevin@kevinlocke.name>	9 years ago
Yaroslav Halchenko	8311bad4ea	Merge pull request #1204 from szepeviktor/patch-8 ... Added CloudFlare API error codes URL	9 years ago
Viktor Szépe	0d8968daa9	Added CloudFlare API error codes URL	9 years ago
Yaroslav Halchenko	7f3b31aa37	Merge pull request #1198 from yarikoptic/enh-split-comma ... ENH: allow to split ignoreip by space and/or comma (Closes #1197)	9 years ago
Yaroslav Halchenko	ff06176e9e	Merge remote-tracking branch 'origin/master' into enh-split-comma ... * origin/master: DOC: changelog for the timeout change Set Timeout at urlopen to 3 seconds README :: init/service example mentions debian based systems as the example README :: fitted paragraph style BF: disable testing on python 3.2 until coverage gets a fix README :: Some style/grammar tweaks, and init/service script mention. Re: #1193 Set Timeout at urlopen to 3 seconds	9 years ago
Yaroslav Halchenko	4c48e994eb	Merge pull request #1201 from yoosefi/master ... README :: Some style/grammar tweaks, and init/service script mention.…	9 years ago
Yaroslav Halchenko	6c0f898ec7	DOC: changelog for the timeout change	9 years ago
Yaroslav Halchenko	166e99d2ba	Merge pull request #1203 from maxbeth/master ... Add a timeout (3 sec) to urlopen within badips.py action	9 years ago
M. Maraun	ebfd223320	Merge branch 'master' of github.com:maxbeth/fail2ban	9 years ago
M. Maraun	2895d981fa	Set Timeout at urlopen to 3 seconds	9 years ago
Ryan Yoosefi	0610791ffe	README :: init/service example mentions debian based systems as the example	9 years ago