fail2ban

Commit Graph

Author	SHA1	Message	Date
Yaroslav Halchenko	083031524d	BF: adding missing Definition section header to firewallcmd-allports	10 years ago
TorontoMedia	7eed55266b	Created firewallcmd-multiport	10 years ago
TorontoMedia	9f91cb2fd8	Created firewallcmd-allports	10 years ago
TorontoMedia	50e5fd9ed7	Create firewallcmd-multiport.conf	10 years ago
TorontoMedia	591e444753	Create firewallcmd-allports.conf	10 years ago
Yaroslav Halchenko	967485c2d0	improving grepping	10 years ago
Yaroslav Halchenko	efbf5064a1	Merge pull request #807 from xslidian/patch-1 grep IP at the start of lines	10 years ago
Orion Poplawski	01b2673e34	Use multiport for firewallcmd-new	10 years ago
Dean Lee	ba44ff312b	grep IP at the start of lines I'm not sure if this regex works best, so I'm patching this single file as a sample. Don't forget to update `mail-whois-lines.conf` after this patch got merged. For the following logs, `grep '[^0-9]199.48.161.87[^0-9]'` will output nothing, while `grep '$[^0-9]\\|^$199.48.161.87[^0-9]'` works: <pre>199.48.161.87 - - [09/Sep/2014:13:38:54 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:38:56 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:38:58 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:00 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:05 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:05 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:13 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:21 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:32 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:34 +0800] "POST /wp-login.php HTTP/1.1" 403 4674 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:34 +0800] "POST /wp-login.php HTTP/1.1" 403 168 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:34 +0800] "POST /wp-login.php HTTP/1.1" 403 168 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:35 +0800] "POST /wp-login.php HTTP/1.1" 403 168 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:35 +0800] "POST /wp-login.php HTTP/1.1" 403 168 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com 199.48.161.87 - - [09/Sep/2014:13:39:35 +0800] "POST /wp-login.php HTTP/1.1" 403 168 "-" "Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.0" - hitsjapan.com</pre>	10 years ago
Yaroslav Halchenko	0d9cfb84e3	Merge pull request #778 from yarikoptic/enh/symbiosis ENH: symbiosis-blacklist-allports action	10 years ago
Yaroslav Halchenko	93243e7d57	ENH: Ignore errors while unbaning in symbiosis firewall Fail2Ban at times "interfers" with the firewall reflashing thus leading to the sporadic errors. IMHO should be safe to ignore	10 years ago
Yaroslav Halchenko	818dd59d65	ENH: symbiosis-blacklist-allports action	10 years ago
Markus Amalthea Magnuson	7b76322898	Fix typos.	10 years ago
leftyfb	6dbd449f77	Changed to Cloudflare JSON API	10 years ago
leftyfb	cba570cabd	Updated comments	11 years ago
leftyfb	5471e99ebe	Added cloudflare action	11 years ago
Yaroslav Halchenko	0adb10f653	Merge branch 'ainfo-copy' of https://github.com/kwirk/fail2ban * 'ainfo-copy' of https://github.com/kwirk/fail2ban: TST: actions modifying aInfo test more robust TST: Test for actions modifying (un)ban aInfo BF: aInfo could be modified by actions, causing unexpected behaviour	11 years ago
SATO Kentaro	65ff3e9604	ENH: Introduce iptables-common.conf.	11 years ago
Steven Hiscocks	8268c1641f	BF: aInfo could be modified by actions, causing unexpected behaviour A separate copy of aInfo is passed to each action	11 years ago
SATO Kentaro	1e1c4ac62a	ENH: Add <chain> to iptables-ipsets.	11 years ago
Steven Hiscocks	db023be09b	BF: Fix bad syntax in badips.py action Taken from https://bugzilla.redhat.com/attachment.cgi?id=895966&action=diff	11 years ago
Yaroslav Halchenko	596b819bdc	DOC: minor -- tabify docstring in badips.py action	11 years ago
Steven Hiscocks	9fcb92524e	BF: badips.py action logging of exc_info on debug typo	11 years ago
yungchin	3a155ed2e0	Update comments in shorewall.conf for new settings	11 years ago
Ruben Kerkhof	1c36da9df9	Fix 2 more typos that codespell didn't catch	11 years ago
Ruben Kerkhof	1695d5c076	Fix a few typos Found with https://github.com/lucasdemarchi/codespell Signed-off-by: Ruben Kerkhof <ruben@rubenkerkhof.com>	11 years ago
Steven Hiscocks	41cbbbc248	BF: Remove unused imports and variables. All highlighted by using pyflakes.	11 years ago
Steven Hiscocks	16125ec81a	BF: badips.py action methods not static due to use of self._logSys	11 years ago
Steven Hiscocks	9e374b159e	ENH: Allow setting of badips.py key for reporting and blacklisting	11 years ago
Steven Hiscocks	de43d1d6d5	ENH: Change badips.py default score to "3" As per recommendation from Amy from badips.com	11 years ago
Steven Hiscocks	0222ff4677	Merge branch 'badips-blacklist' into 0.9 Conflicts: ChangeLog - entires added in both branches. Change: config/action.d/badips.py - jail.getName() changed to jail.name	11 years ago
Steven Hiscocks	0c63d0061a	DOC: Add documentation for badips.py action	11 years ago
Steven Hiscocks	dfb46cfda6	BF: Require Python 2.7+ for badips.py action	11 years ago
Daniel Black	cc8ec826c5	MRG: from master 2014-03-02	11 years ago
Steven Hiscocks	df8d700d17	RF: Refactor Jail and JailThread Includes: - documentation to new format and use of properties - change isActive->is_active as former no longer documented for python3, and later introduction and documented in python2.6 - status formatter in beautifier somewhat more automatically formatted; no changes are required for additional status elements - JailThread now set to active within `start` method, complimenting `stop` method	11 years ago
Daniel Black	9be22a96a6	Merge pull request #614 from kwirk/complain-abusix BF: Use abusix Abuse Contact DB to get more accurate abuse addresses	11 years ago
Daniel Black	cc463aa60d	Merge pull request #620 from kwirk/xarf-tweaks BF: Fix misplaced ";", and duplicate {ip,}matches	11 years ago
Daniel Black	a044517cb7	MRG: from master to 0.9 2014-02-20	11 years ago
Steven Hiscocks	8c5525163b	BF: Fix misplaced ";", and duplicate {ip,}matches	11 years ago
Steven Hiscocks	997729e274	BF: Fix complain action for multiple recipients and misplaced ";"	11 years ago
Steven Hiscocks	7c76f7f204	BF: $EUID not avilable in all shells, replaced with `id -u` in xt_recent	11 years ago
Steven Hiscocks	2a37ee2fb7	ENH: Add root user check in xt_recent, and add missing actionstop Thanks to Helmut Grohne on IRC for suggestion	11 years ago
Steven Hiscocks	5c7630c4be	ENH: Allow separate blacklist category for badips.py action	11 years ago
Steven Hiscocks	cf81ddd8e2	BF: Add error handling in badips.py action	11 years ago
Steven Hiscocks	31f4ea59cb	BF: Use abusix Abuse Contact DB to get more accurate abuse addresses Taken from xarf-login-attack action from 0.9 branch by Daniel Black	11 years ago
Steven Hiscocks	dff8909473	ENH: Add badips.com reporting and blacklisting action (python based)	11 years ago
Daniel Black	1e1261ccb4	MRG: from master 2014-01-23	11 years ago
Daniel Black	ca57427080	BF: firewallcmd-ipset had non-working actioncheck	11 years ago
Steven Hiscocks	8221c7ca71	TST+BF: Add tests for python actions, including test for smtp.py Also fix bug when specifying multiple recipients for smtp.py action	11 years ago
Daniel Black	a650178bd1	MRG: merge from master 2014-01-19	11 years ago

1 2 3 4 5

219 Commits (c96415da2790e03ed8ab9b0f7c38dbc7a5da359e)