fail2ban

Commit Graph

Author	SHA1	Message	Date
sebres	4a1d720344	filter.d/asterisk.conf: another part ` chan_sip.c:28468 handle_request_register:` in log prefix	8 years ago
sebres	2c54f90469	sshd-filter: better universal regexp, that matches more complex different injects, using conditional expressions (on username and auth-info section), see new test cases also.	8 years ago
sebres	a544c5abac	sshd-filter: recognized "Failed publickey for" now (gh-1477) + improved regexp (not anchored now to recognize all "Failed anything for ... from <HOST>" ChangeLog entry added	8 years ago
sebres	5509ba37a2	Merge pull request #1512 from 'remotes/gh-upstream/0.9' into 0.10	8 years ago
sebres	9935cf19c1	description provided, ChangeLog entries added	8 years ago
sebres	d71a525a85	Merge branch 'master' into 0.10 (resolve conflicts and cleaning tree points after back-porting gh-1508 0.10 -> 0.9)	8 years ago
sebres	cb340db220	ChangeLog entry for gh-1508	8 years ago
Yaroslav Halchenko	123f4ceaee	Changelog for postfix-sasl fix	8 years ago
sebres	70658d7a19	Merge pull request #1494 from rhardy613/master (branch 'sebres:pr-1494')	8 years ago
rhardy613	89f8999fe5	Add changelog entry for ASSP filter changes Add changelog entry for ASSP filter changes	8 years ago
sebres	eb6e3c52ae	ChangeLog entries for the last fix (cherry pick from 0.10)	8 years ago
sebres	f5b7ffeb4b	DOC: Reformatted ChangeLog into legit Markdown (after merge of master to 0.10)	8 years ago
sebres	0eea362aa0	Merge branch 'master' into 0.10	8 years ago
Yaroslav Halchenko	5714ac201b	DOC: preparations for 0.9.5 release	8 years ago
Yaroslav Halchenko	21056c995d	Merge remote-tracking branch 'origin/master' into doc-changelog * origin/master: another variant of regex add trailing anchor to failregex add PR id to ChangeLog improved failregex according to @sebres recomendations * add `__prefix_line` to regex * fix time in log file add info to log file added sample log lines for slapd adding openldap slapd filter	8 years ago
Yaroslav Halchenko	28a0605f69	Merge pull request #1478 from gips0n/master adding openldap slapd filter	8 years ago
sebres	683f8fc56c	Merge branch 'master' into 0.10	8 years ago
Yaroslav Halchenko	33ed71b3de	DOC: Reformatted ChangeLog into legit Markdown (Closes #962 )	9 years ago
Yaroslav Halchenko	ec9c4a27f3	DOC: tuned up ChangeLog entries for 0.9.5 unified capitalized beginning of each entry no trailing spaces or dots etc	9 years ago
Andrii Melnyk	2c5a489bc7	add PR id to ChangeLog	9 years ago
sebres	f5f204ca7c	Improved changes of gh-1458: `[^']` after callid was wrong, changed to `[^\)]`; regexp anchored at the end; almost the same regex grouped to one; Closes #1458	9 years ago
Andrii Melnyk	b2e3affaa0	adding openldap slapd filter	9 years ago
Yaroslav Halchenko	593b1210c0	Merge master (commit '0.9.4-79-gaf8b650') into 0.10 * commit '0.9.4-79-gaf8b650': badip timeout option introduced, set to 30 seconds in our test cases (#1463) DOC: changelog for recent exim filters tune up Asterisk pjsip (#1456) BF: finalize that sample log line for exim4 RF: for consistency use (?:XXX)? instead of (?:\|XXX) ENH: use non-capturing regex groups in exim-common and exim filters ENH: exim filters -- make more use of %(host_info)s which in turn made more flexible BF: make :port and I=[ip]:port optional for a "AUTH command used when not advertised"	9 years ago
Yaroslav Halchenko	11f7cf5ad8	DOC: changelog for recent exim filters tune up	9 years ago
Ludovic Gasc	f85fb45b29	Asterisk pjsip (#1456 ) * Improve PJSIP log support for Asterisk 13+ * Update changelog: filter.d/asterisk.conf - fix security log support for PJSIP and Asterisk 13+ * Change pjsip regexp with sebres observation, thanks to @nturcksin	9 years ago
sebres	f62266659f	Merge branch 'master' into '0.10'	9 years ago
sebres	baafac36a4	ChangeLog entry	9 years ago
sebres	34ae0b916e	Merge pull request #1421 from sebres/fix-1405 filter.d/common.conf: fixes unexpected extra regex-space in generic `__prefix_line` (gh-1405)	9 years ago
sebres	932708de9e	fixed --pidfile bug, introduced in gh-1322: gentoo-initd fixed --pidfile bug: `--pidfile` is option of start-stop-daemon, not argument of fail2ban (see gh-1434) closes gh-1434	9 years ago
sebres	de813acf51	extends generic `__prefix_line` with optional brackets for the date ambit (gh-1421), added new parameter `__date_ambit` + test case added;	9 years ago
sebres	3e49522b7a	fixes unexpected extra regex-space in generic `__prefix_line` (gh-1405, misleadingly committed in `d2a9537568`); all optional spaces normalized in generic include `common.conf` + test cases are extended (using new example pseudo-filter and test log `zzz-generic-example`);	9 years ago
sebres	cce63926ce	ChangeLog entry added	9 years ago
sebres	3df97beaa6	changelog entries from sebres:f2b-perfom-prepare-716 (gh-1346)	9 years ago
sebres	c22ba5413d	changes from ipv6-support-0.10 after merge	9 years ago
sebres	f9ea845595	Merge branch 'ipv6-support-0.10' into 0.10	9 years ago
Yaroslav Halchenko	5040c95bdb	DOC: stub for 0.10.0 release changelog	9 years ago
Alexander Koeppe	ce196744d1	Update ChangeLog / THANKS entries	9 years ago
sebres	e595fefc9b	change log and thanks entries	9 years ago
Serg G. Brester	b9b7ecbf6b	Merge pull request #1357 from sebres/monit-new-fltr monit filter fixup for the new version (gh-1355)	9 years ago
TorontoMedia	3d239215cd	Two new firewalld actions with rich rules for firewalld-0.3.1+ (gh-1367) closes #1367	9 years ago
sebres	ac27c9cb96	Merge branch 'patch-2' (gh-1371)	9 years ago
theDogOfPavlov	28e246b5d7	added note to cover additional exim filters	9 years ago
theDogOfPavlov	42f43d0f8a	added note to cover dovecot ldap regex	9 years ago
Yaroslav Halchenko	bfac42eb2e	changelog for journalmatch pure-ftpd	9 years ago
sebres	9d13bb0c3a	ChangeLog and THANKS entries	9 years ago
Yaroslav Halchenko	634e68036e	Get ready for further developments	9 years ago
Yaroslav Halchenko	5ffc15ac68	Changes for the 0.9.4 release	9 years ago
Yaroslav Halchenko	19850d71e9	changelog about gentoo initd	9 years ago
Yaroslav Halchenko	2adf5855ac	Changelog for the recent PR and added Tom to THANKS	9 years ago
sebres	667785b608	mysqld: failregex fixed (accepts different log level, more secure expression now); closes #1332	9 years ago
Yaroslav Halchenko	905c87ca4a	Merge pull request #1310 from yarikoptic/pr-1288 NF: HAProxy HTTP Auth filter	9 years ago
Yaroslav Halchenko	3dc57af19c	Merge branch 'logrotate' of https://github.com/sbraz/fail2ban * 'logrotate' of https://github.com/sbraz/fail2ban: Remove compression and count from logrotate	9 years ago
3eBoP	257b7049d8	Update asterisk filter: changed regex for "Call from ...". Sometimes extension can have a plus symbol (+) because they can be phone number. Closes #1309	9 years ago
Pierre GINDRAUD	b5a07741c8	Add new regex into postfix filter. The new regexp is able to detect bad formatted SMTP EHLO command	9 years ago
Louis Sautier	869d99dd37	Remove compression and count from logrotate Initially reported at https://bugs.gentoo.org/show_bug.cgi?id=549856	9 years ago
Yaroslav Halchenko	3f437b32db	Merge remote-tracking branch 'pr/1288/head' * pr/1288/head: Update haproxy-http-auth.conf Added HAProxy HTTP Auth filter Conflicts: config/jail.conf - resolved + removed unnecessary filter/enabled (defaults should be as good)	9 years ago
Yaroslav Halchenko	377ea32441	Merge pull request #1295 from obounaim/master The sender option is ignored by some actions	9 years ago
Serg G. Brester	fe14c8fa05	Merge pull request #1292 from albel727/master Add nftables actions	9 years ago
local	58a8736e0f	Updating changelog.	9 years ago
Alexander Belykh	cb2d70d7a8	Add ChangeLog entry for new nftables actions	9 years ago
sebres	25a09352e4	+ ChangeLog entry	9 years ago
Jordan Moeser	e133762a28	Added HAProxy HTTP Auth filter	9 years ago
Yaroslav Halchenko	69aa1feac0	Merge "Mac OS Screen Sharing filter" PR 1232 * pr/1232/head: removed system.log Removed old svn revision comment removed false matches Removed includes comment for screensharing jail Now using a literal logpath for screensharing jail Fixed blatant typo in regex clarified comments on sample log format Fixed name (again?) Made screensharing jail off by default Changed regex prequel added entry for new screensharingd filter name change & new sample data Added json metadata Sample log for test case Replaced .* with literal Update jail.conf Added new path variable for system.log Added in settings for screensharingd filter Created file Conflicts: ChangeLog - moved to New Features config/jail.conf - kept at the end	9 years ago
Yaroslav Halchenko	16710237e3	Merge remote-tracking branch 'origin/master' * origin/master: Add 'Sender address rejected: Domain not found' Postfix failregex	9 years ago
Yaroslav Halchenko	26dd6d7425	Merge pull request #1258 from aleksandrs-ledovskis/feature/postfix-domain-not-found-failregex Add 'Sender address rejected: Domain not found' Postfix failregex	9 years ago
Yaroslav Halchenko	dfaf82d68a	Changelog entry for PartOf in .service fix	9 years ago
Ross Brown	8d12dba245	Merge remote-tracking branch 'upstream/master'	9 years ago
Ross Brown	16aa2fa13e	Updated ChangeLog to include new murmur jail.	9 years ago
Ross Brown	ba535826a8	Updated ChangeLog to include new murmur filter.	9 years ago
Yaroslav Halchenko	5d6cead996	ENH: sshd filter -- match new "maximum auth attempts exceeded" (Closes #1269 )	9 years ago
sebres	6d984717b5	ordered dict replaced with dict + change log entry fix # Conflicts: # fail2ban/server/filter.py	9 years ago
sebres	3a179ec5d7	small code review: (much pretty) handling of filename as key - FileFilter contains (ordered) dict of files (not list), as discussed in gh-1265	9 years ago
Aleksandrs Ļedovskis	fa59a6850f	Add 'Sender address rejected: Domain not found' Postfix failregex Signed-off-by: Aleksandrs Ļedovskis <aleksandrs@ledovskis.lv>	9 years ago
Orion Poplawski	c656cb0d36	Merge branch 'master' into journaldefault Conflicts: ChangeLog	9 years ago
Yaroslav Halchenko	6af6e40b62	Merge pull request #1241 from sebres/known/param-tag New interpolation feature for definition config readers - `<known/parameter>`	9 years ago
sebres	46b116e86a	filter test cases improved + log captured inside such tests + python 3.x compatibility; changelog entry;	9 years ago
sebres	94cffece12	New interpolation feature for definition config readers - `<known/parameter>`, as extension to interpolation `%(known/parameter)s`, that does not works for filter and action init parameters;	9 years ago
Serg G. Brester	eef7771b4e	Merge pull request #1238 from sebres/fix/gh-1216 Fixed directly defined banaction for allports jails like pam-generic, recidive, etc	9 years ago
sebres	e825e977cc	Nginx log paths extended (prefixed with "*" wildcard) closes gh-1237	9 years ago
sebres	f359ed8c36	Fixed directly defined banaction for allports jails like pam-generic, recidive, etc with new default variable `banaction_allports` (+ man entries for both variables added); closes gh-1216	9 years ago
sebres	6884593ab8	New filter `nginx-limit-req` ban hosts, that were failed through nginx by limit request processing rate (ngx_http_limit_req_module)	9 years ago
Orion Poplawski	0661aece46	Merge branch 'master' into journaldefault Conflicts: ChangeLog	9 years ago
Simon Brown	3dd1c305ce	added entry for new screensharingd filter	9 years ago
sebres	eb87638ead	ChangeLog entry for OpenHAB home automation filter (gh-1223)	9 years ago
Pablo Rodriguez Fernandez	2c576c64f8	Change domain filter regex Change domain filter regex since there are other Google crawlers. See "Google crawlers" <https://support.google.com/webmasters/answer/1061943?hl=en>	9 years ago
Orion Poplawski	81a26266a9	Add changlog entry for postfix-rbl logpath change	9 years ago
Orion Poplawski	75d33c0f09	Add *_backend options for services to allow distros to set the default backend per service. Set default to systemd for Fedora as appropriate.	9 years ago
Pablo Rodriguez Fernandez	a28e6b442e	Add check in apache-fakegooglebot to protect against PTR fake record An attacker may return a PTR record which fakes a Googlebot's domain name. This modification resolves the PTR records to verify it. See "Verifying Googlebot": <https://support.google.com/webmasters/answer/80553?vid=1-635800030504666679-1963774919>	9 years ago
sebres	2696ede251	mysqld-auth: Updated "Access denied ..." regex for MySQL 5.6 and later closes gh-1211	9 years ago
Kevin Locke	2a5c93cfb5	Update ChangeLog and THANKS for "Auth fail" changes Document the changes from `36919d9f` in the ChangeLog and add myself to the THANKS file (at @sebres suggestion). Signed-off-by: Kevin Locke <kevin@kevinlocke.name>	9 years ago
Yaroslav Halchenko	ff06176e9e	Merge remote-tracking branch 'origin/master' into enh-split-comma * origin/master: DOC: changelog for the timeout change Set Timeout at urlopen to 3 seconds README :: init/service example mentions debian based systems as the example README :: fitted paragraph style BF: disable testing on python 3.2 until coverage gets a fix README :: Some style/grammar tweaks, and init/service script mention. Re: #1193 Set Timeout at urlopen to 3 seconds	9 years ago
Yaroslav Halchenko	6c0f898ec7	DOC: changelog for the timeout change	9 years ago
Yaroslav Halchenko	8cf614e221	ENH: allow to split ignoreip by space and/or comma (Closes #1197 ) Way too many people ran into this gotcha, so lets just do it	9 years ago
Yaroslav Halchenko	55e542b273	Merge remote-tracking branch 'pr/1170/head' -- opensuse paths * pr/1170/head: Updated ChangeLog regarding openSUSE's path config Added configuration for opensuse path	9 years ago
Yaroslav Halchenko	db1a3f17e1	ENH: new date pattern with year after day (not after entire entry)	9 years ago
Yaroslav Halchenko	fbdd0b74a1	DOC: Changelog entry for this fix	9 years ago
Ville Skyttä	67a94733a9	logrotate: Do not rotate empty logs As a useful side effect, prevents "Unable to contact server. Is it running?" mails from cron when fail2ban hasn't been (intentionally) running nor thus logging anything either.	9 years ago
Edward Beckett	f5b88bd377	Updated Changelog	9 years ago
sebres	4cf3b576b9	Bugfix for dnsToIp resolver for fqdn with large list of IPs; closes #1164	9 years ago
Edward Beckett	4bd7991573	Added apache-badbots.conf	9 years ago

1 2 3 4 5 ...

727 Commits (bb9541b7a9cbfefdd77712162146eaf55468d99f)