github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
6,143 Commits
33 Branches
229 Tags
19 MiB
Commit Graph

6143 Commits (c16bc503527c71c51bd3e5b90dcf20f869c9d52c)

Author SHA1 Message Date
sebres c16bc50352 allow to create package without tests: DEB_BUILD_OPTIONS='nocheck notest' dpkg-buildpackage -b -rfakeroot -us -uc -d 2020-11-23 14:43:54 +01:00
sebres 2831c0f62a setup.py: small amend to d2d3762ba9fa82b7983bae74cd567702e5c1b96c: allow build without tests also (both build and install accepting `--without-tests` option now) 2020-11-23 14:40:48 +01:00
sebres a5ea34c51b Merge branch '0.11' into wc/debian 2020-11-20 18:51:36 +01:00
sebres 07adcc1cc9 0.11.1 (2020/01/11) - this-is-the-way 
-----BEGIN PGP SIGNATURE-----
 
 iQEzBAABCAAdFiEEhzhVnib2cd+eLG2eaDvxvr0KiCwFAl4ZytMACgkQaDvxvr0K
 iCxSYAf+Iskbj0x9b56rAPhwuRk5q0q4BhoNnDACYeMyOe7/jCIMLQgLn0o1SeQv
 erwmsAOvdhvzn5DjtEpOigKIpQseSxUWD3m3W4SeNKgIy6q+L5ZjIee4LOohhqhz
 TfHLREYZjRhorHM0oDw8GjxfW9fUrw25IY4AS+df4BVsmAEz3tH3+Zc3o+AecWPN
 ziz+MDy6vNY3vn+/YBp/ZrvpYlIQeJ8fs0Bkk6bxATqV1sIC2yNLf6mpt6FtWg+1
 VX3UsX4THR9pQVwoOdIked1wWHWcLnA1obyuGFK/mA5iQy9SsODD3iSM3PyUOWcC
 PTJ2heMNdx14lc4z7OYYKsweHbzCdQ==
 =LCb+
 -----END PGP SIGNATURE-----

merge-point for 0.11.1
 2020-11-20 17:23:15 +01:00
sebres b37cbf9c29 don't error on clean-up of missing files 2020-11-20 16:58:20 +01:00
sebres 5f2464a9d1 debian\rules: better clean-up of non-debian paths includes 2020-11-20 15:25:42 +01:00
sebres adbfdc222d Merge branch '0.10' into 0.11 2020-11-11 11:17:15 +01:00
sebres ca4da9d1d3 actions: extend tags replacement in non ticket-based commands (actionstart, actionstop, etc); 
fixes regression by interpolation of tag `<bantime>` introduced in 0.11 with dynamic bantime (due to `bantime.increment`, see #2869)
 2020-11-11 11:08:23 +01:00
Sergey G. Brester 9c8dcbd6eb
Merge pull request #2855 from benrubson/grafana 
Add Grafana jail
 2020-11-10 15:12:46 +01:00
Sergey G. Brester 1c1a9b868c
no catch-alls, user name and error message stored in ticket 2020-11-09 15:36:30 +01:00
benrubson 840f0ff10a Add Grafana jail 2020-11-09 15:31:06 +01:00
Sergey G. Brester 267cbf5861
Merge pull request #2778 from Mart124/bitwarden 
Add Bitwarden syslog support
 2020-11-09 13:47:04 +01:00
sebres 25e006e137 review and small tweaks (more precise and safe RE) 2020-11-09 13:43:59 +01:00
Mart124 2a18b82f5f Support alternative Bitwarden log format 2020-11-09 13:34:41 +01:00
Mart124 df659a0cbc Add Bitwarden syslog support 2020-11-09 13:34:39 +01:00
Sergey G. Brester 472bdc437b
Merge pull request #2723 from benrubson/softether 
Add SoftEtherVPN jail
 2020-11-09 13:23:25 +01:00
Sergey G. Brester 010e76406f
small tweaks (both 2nd time and facility are optional, avoid catch-all, etc) 2020-11-09 13:19:25 +01:00
sebres 66ff90408f Merge branch '0.10' into 0.11 2020-11-09 12:45:29 +01:00
sebres d4adec7797 Merge branch '0.9' into 0.10 2020-11-09 12:44:07 +01:00
sebres 5430091acb jail `counter-strike`: removed link to site with redirect to malicious page (gh-2868) 2020-11-09 12:43:34 +01:00
benrubson ec873e2dc3 Add SoftEtherVPN jail 2020-11-05 23:56:30 +01:00
sebres e700ccc667 filter apache-modsecurity: added coverage for different log-format (apache 2.4 and php-fpm, gh-2717) 2020-11-05 16:51:49 +01:00
sebres 6ef69b48ca Merge branch '0.10' into 0.11 2020-11-05 16:12:31 +01:00
sebres 55d6408b13 tweaks to speedup test-cases (test-suite seems to be time stable now, so we could shorten sleeping intervals) 2020-11-05 15:31:11 +01:00
sebres 7f0010be68 attempt to install systemd-python module 2020-11-05 14:12:39 +01:00
Sergey G. Brester 7cb6412f68 1st try of GH actions flow (CI only, no coverage atm) 2020-11-05 14:12:37 +01:00
Sergey G. Brester a07e6fe1a2 reduce default `maxmatches` from 50 to 5: avoid too large memory consumption if `maxretry` is large and many failures don't cause ban (but accumulated in fail-manager with all the matched lines); 
closes gh-2843
 2020-10-30 14:17:47 +01:00
sebres 02525d7b6f filter.d/sshd.conf: mode `ddos` (and `aggressive`) extended with new rule closing flood attack vector, matching: 
error: kex_exchange_identification: Connection closed by remote host
(gh-2850)
 2020-10-08 21:07:51 +02:00
sebres c8059bf9b3 ban/unban: increase responsiveness of actions thread by (un)banning process, better waiting timeout considering pending tickets for unban (_nextUnbanTime) 2020-09-29 16:27:17 +02:00
sebres 2817a8144c `action.d/bsd-ipfw.conf`: small amend (gh-2836) simplifying awk condition/code (position starts from `<lowest_rule_num>` and increases whilst used) 2020-09-29 13:33:40 +02:00
sebres 1418bcdf5b `action.d/bsd-ipfw.conf`: fixed selection of rule-no by large list or initial `lowest_rule_num`, exit code can't be larger than 255 (gh-2836) 2020-09-29 12:35:49 +02:00
Ondřej Nový acb11a6da9 d/watch: Use https protocol 2020-09-24 08:42:58 +02:00
Ondřej Nový f91ee67e7a d/control: Update Vcs-* fields with new Debian Python Team Salsa layout 2020-09-24 08:42:58 +02:00
Ondřej Nový 12e055b19f d/control: Update Maintainer field with new Debian Python Team contact address 2020-09-24 08:42:58 +02:00
Ondřej Nový cab66065dd Use debhelper-compat instead of debian/compat 2020-09-24 08:42:58 +02:00
sebres d253e60a8b Merge branch '0.10' into 0.11 2020-09-23 19:39:50 +02:00
sebres 24093de32d small amend (simplifying formatted help and man) 2020-09-23 19:35:17 +02:00
Nathan Henrie f518d42c59 Add a note about `journalflags` options to `systemd-journal` backend 
Also adds systemd backend configuration examples to jail.conf(5)

Closes #2696
 2020-09-23 19:09:42 +02:00
sebres 4c2539856c Merge branch 'speedup-client-status' into 0.10 2020-09-23 13:03:45 +02:00
Sergey G. Brester d977d81ef7
action.d/abuseipdb.conf: removed broken link, simplified usage example, fixed typos 2020-09-17 12:39:08 +02:00
sebres f381b98246 introduces new flavor `short` for `fail2ban-client status $jail short`: output total and current counts only, without banned IPs list in order to speedup it and to provide more clear output (gh-2819), flavor `basic` (still default) is unmodified for backwards compatibility; 
it can be changed later to `short`, so for full list of IPs in newer version one should better use:
  - `fail2ban-client status $jail basic`
  - `fail2ban-client get $jail banned` or `fail2ban-client banned`
 2020-09-10 11:53:26 +02:00
sebres e8ee3ba544 resolves a bottleneck within transmitting of large data between server and client: speedup search of communications end-marker and increase max buffer size (up to 32KB) 2020-09-10 11:52:25 +02:00
sebres 5abc4ba4ae amend to 39d4bb3c35 (#2758): better reaction on broken pipe (on long output), don't close stdout explicitly (allows usage of modules like cProfile, which outputs result on exit), just flush it before exit. 2020-09-09 17:32:10 +02:00
sebres f555ff45e9 attempt to speedup ban- and fail-manager (e. g. fail2ban-client status, see gh-2819), remove unneeded lock (GIL is enough here) 2020-09-07 19:08:52 +02:00
sebres 74b73bce8a Merge branch '0.10' into 0.11 2020-09-04 13:09:47 +02:00
sebres a038fd5dfe `action.d/firewallcmd-*.conf` (multiport only): fixed port range selector, replacing `:` with `-`; 
small optimizations on `firewallcmd-rich-rules.conf` and `firewallcmd-rich-logging.conf` simplifying both and provide a dependency (rich-logging is a derivative of rich-rules);
closes gh-2821
 2020-09-03 16:41:23 +02:00
sebres 4d2734dd86 Merge branch '0.10' into 0.11 2020-09-02 20:23:07 +02:00
sebres ed20d457b2 jail.conf: removed action parameter `name` that set on jail-name (`name=%(__name__)s` is default in action reader) 2020-09-02 20:14:31 +02:00
sebres f09ba1b399 action in jail-config extended to consider space as separator now (splitWithOptions separates by space between mains words, but not in options), so defining `action = a b` would specify 2 actions `a` and `b`; 
it is additionally more precise now (see fixed typo with closed bracket `]` instead of comma in testServerReloadTest)
 2020-09-02 20:09:06 +02:00
sebres a3a148078e fail2ban-regex: more informative output for `datepattern` (e. g. set from filter) - pattern : description, example: 
Use      datepattern : ^%Y-%m-%d %H:%M:%S : ^Year-Month-Day 24hour:Minute:Second
 2020-08-28 14:12:57 +02:00