fail2ban

Commit Graph

Author	SHA1	Message	Date
Steven Hiscocks	40f67c64b8	TST: Test sample logs' entries are matched by filter regexs	12 years ago
Daniel Black	1bb427cc14	TST: remove dup test log entry	12 years ago
Daniel Black	6ce41a611d	BF: fix filter on apache-auth. Closes #286	12 years ago
Daniel Black	5412d7336f	DOC: ChangeLog confict	12 years ago
Daniel Black	619603fe05	BF: match asterisk InvalidPassword correctly	12 years ago
Steven Hiscocks	bfa2b9dec3	ENH: dovecot filter additions for session, time value and blank user	12 years ago
Daniel Black	d6dece4900	ENH: Split log and provide jail examples	12 years ago
Yaroslav Halchenko	e6ebcf6687	Merge branch 'dovecot' of https://github.com/grooverdan/fail2ban * 'dovecot' of https://github.com/grooverdan/fail2ban: ENH: remove non-capturing groups for readibility BF: fix dovecot filter for when no TLS is enabled on pop/imap Conflicts: ChangeLog -- changelog entries. Also untabified few other spots	12 years ago
Yaroslav Halchenko	f0f237fa05	Merge pull request #269 from grooverdan/asterisk ENH: filter.d/asterisk - consolidate log prefix regex and add a few fail messages	12 years ago
Daniel Black	4777cfd4e7	ENH: split out exim-spam into speparate filter	12 years ago
Daniel Black	c7d64c3c7f	TST: url reference fix	12 years ago
Daniel Black	ca996ace5e	ENH: remove temporary failures from local_scan in line with comments in gh-258	12 years ago
Daniel Black	72f9e6a51e	ENH/TST: more samples and rejection types for sender verify fail and rejected RCPT	12 years ago
Daniel Black	3b76fc79f9	BF: fix dovecot filter for when no TLS is enabled on pop/imap	12 years ago
Yaroslav Halchenko	1b170b2aef	BF: support apache 2.4 more detailed error log format. Close #268	12 years ago
Yaroslav Halchenko	6d331bcbea	BF: make colon after [daemon] optional. Close #267	12 years ago
Daniel Black	fa7a105483	ENH: filter.d/asterisk - consolidate log prefix regex and add a few fail messages	12 years ago
Daniel Black	b8cfda68b8	ENH: new exim filter regexs. Also note a begining PID in this format. Thanks to ftoppi for the log entries	12 years ago
Daniel Black	d441d61a1e	TST/ENH: Improve regex around exim rejected by local_scan now has test cases. Unrouteable address error messages now normalised after looking into exim code.	12 years ago
Yaroslav Halchenko	9d4b613ee4	Merge branch '3proxy' of https://github.com/grooverdan/fail2ban * '3proxy' of https://github.com/grooverdan/fail2ban: BF: fix to proxy port in 3proxy example ENH: sample log + more specific regex BF: authentication errors end in 01-09 but the beginning part indicates the service as per https://github.com/fail2ban/fail2ban/issues/246#issuecomment-19327955 thanks to ykimon BF: need to anchor the start to avoid another repeat of DoS injection like Apache ENH: stricter regex thanks to Steven Hiscocks (kwirk) DOC: credits Conflicts: ChangeLog	12 years ago
Yaroslav Halchenko	173fe48e77	Merge branch 'exim' of https://github.com/grooverdan/fail2ban * 'exim' of https://github.com/grooverdan/fail2ban: BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address ENH: readibility thanks to Yaroslav ENH/BF: exim improvements with sample Conflicts: ChangeLog	12 years ago
Yaroslav Halchenko	ec629ab4e8	Merge branch 'proftpd' of https://github.com/grooverdan/fail2ban * 'proftpd' of https://github.com/grooverdan/fail2ban: ENH: proftpd chan accept usernames with spaces ENH: injection of fail data into USER field ENH: proftp regex hardening and log messages Conflicts: ChangeLog	12 years ago
Daniel Black	8cc13b5b40	BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address	12 years ago
Daniel Black	e8b6acfa65	TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15	12 years ago
Daniel Black	2e2ec5d1f5	ENH: injection of fail data into USER field	12 years ago
Daniel Black	dbe7ffe050	ENH: dovecot regexs rewritten and extra failures	12 years ago
Daniel Black	4c67a269bf	ENH: proftp regex hardening and log messages	12 years ago
Daniel Black	3e3802512a	ENH/BF: exim improvements with sample	12 years ago
Daniel Black	9dbaec0894	ENH: sample log + more specific regex	12 years ago
Yaroslav Halchenko	6ccd57813c	BF: anchor apache- filters. Close #248 See https://vndh.net/note:fail2ban-089-denial-service for more information	12 years ago
Daniel Black	16d63434ef	DOC: credits	12 years ago
Carlos Alberto Lopez Perez	7248ef4564	Filter Asterisk: Add sample log entry to testcase. * Sample log entry for AUTH_UNKNOWN_DOMAIN (Not a local domain)	12 years ago
Daniel Black	916b5a7c23	TST: normalize logs to use example.com and 1.2.3.4 as IP	12 years ago
Daniel Black	eceede175a	Merge branch 'patch-4' of https://github.com/silviogarbes/fail2ban into asterisk-227	12 years ago
Terence Namusonge	098c88a67b	failregex when roundcube log driver is set to 'syslog'	12 years ago
silviogarbes	52fa5f19b0	Update asterisk	12 years ago
Yaroslav Halchenko	571cadd80c	ENH: Use real (resolving) example.com instead of test.example.com	12 years ago
Yaroslav Halchenko	976a65bb89	Merge branch 'bsd_logs' of https://github.com/grooverdan/fail2ban * 'bsd_logs' of https://github.com/grooverdan/fail2ban: ENH: separate out regex and escape a . BF: missed MANIFEST include DOC: credits for bsd log DOC: bsd syslog files thanks to Nick Hilliard BF: change common.conf to handle formats of syslog -v and syslog -vv in BSD Conflicts: config/filter.d/common.conf	12 years ago
Yaroslav Halchenko	5e1d8b07e8	ENH: logs/sshd -- have ":" after [daemon] (other uses are uncommon) See https://github.com/fail2ban/fail2ban/issues/216\#issuecomment-17535577 for the analysis	12 years ago
Yaroslav Halchenko	ffcac2ccee	ENH: logs/sshd -- use example.com as the resolved hostname in sample log lines	12 years ago
Yaroslav Halchenko	2143cdff39	Merge: opensolaris docs/fixes, no 'sed -i' in hostsdeny, sshd regex tuneups Origin: from https://github.com/jamesstout/fail2ban * 'OpenSolaris' of https://github.com/jamesstout/fail2ban: ENH: Removed unused log line BF: fail2ban.local needs section headers ENH: Use .local config files for logtarget and jail ENH+TST: ssh failure messages for OpenSolaris and OS X ENH: fail message matching for OpenSolaris and OS X ENH: extra daemon info regex ENH: actionunban back to a sed command Readme for config on Solaris create socket/pid dir if needed Extra patterns for Solaris change sed to perl for Solaris Conflicts: config/filter.d/sshd.conf	12 years ago
jamesstout	932bd102fe	ENH: Removed unused log line removed #9 per https://github.com/fail2ban/fail2ban/pull/182#discussion_r4068885	12 years ago
Daniel Black	cde7108033	DOC: bsd syslog files thanks to Nick Hilliard	12 years ago
Enrico Labedzki	24a8d07c20	added new date format support for ASSP SMTP Proxy	12 years ago
jamesstout	018913db6a	ENH+TST: ssh failure messages for OpenSolaris and OS X	12 years ago
Daniel Black	0ac8746d05	ENH: Account for views in named filter. By Romain Riviere in gentoo bug #259458	12 years ago
Yaroslav Halchenko	ffaa9697ee	Adjusting previous PR (MySQL logs) according to my comments	12 years ago
Yaroslav Halchenko	3e6be243bf	Merge branch 'Support_for_mysql_log_example' of https://github.com/arto-p/fail2ban * 'Support_for_mysql_log_example' of https://github.com/arto-p/fail2ban: Added testcase for MySQL date format to testcases/datedetectortestcase.py and example of MySQL log file. Added support for MySQL logfiles Conflicts: testcases/datedetectortestcase.py -- conflictde with other added test cases	12 years ago
Yaroslav Halchenko	72b06479a5	ENH: Slight tune ups for fresh SOGo filter + comment into the sample log file	12 years ago
Yaroslav Halchenko	105306e1a8	Merge remote-tracking branch 'pr/117/head' -- SOGo filters * pr/117/head: An example of failed logins against sogo Update sogo-auth.conf Update config/filter.d/sogo-auth.conf Create sogo-auth.conf Update config/jail.conf	12 years ago
Yaroslav Halchenko	91d5736c12	ENH: postfix filter -- react also on (450 4.7.1) with empty from/to. fixes #126	12 years ago
Artur Penttinen	edc0eb2a9c	Added testcase for MySQL date format to testcases/datedetectortestcase.py and example of MySQL log file.	12 years ago
ArndRa	ebb6e5f4eb	An example of failed logins against sogo	12 years ago
Yaroslav Halchenko	5f2d3832f7	NF: roundcube-auth filter (to close Debian #699442 , needing debian/jail.conf section)	12 years ago
Yaroslav Halchenko	9a39292813	ENH: Added login authenticator failed regexp for exim filter	12 years ago
Yaroslav Halchenko	21e966e4bb	example logs should carry the same name as the filter they are devised for	12 years ago
pigsyn	123d457924	Update testcases/files/logs/Webmin	12 years ago
pigsyn	38dd1506cc	Sample Webmin logs	12 years ago
Yaroslav Halchenko	68c1defb76	ENH: added dovecot example from Daniel Black + example with DoS attempt via injected rhost	12 years ago
hamilton5	ccc62ddbf3	Update testcases/files/logs/dovecot	12 years ago
hamilton5	c534c1d03d	Update testcases/files/logs/dovecot	12 years ago
Yaroslav Halchenko	fc27e00290	ENH: tune up sshd-ddos to use common.conf and allow training spaces	12 years ago
Yaroslav Halchenko	1e12c220e6	minor: added a note on now "negative" log entries on "POSSIBLE BREAK-IN ATTEMPT"	12 years ago
François Boulogne	958a1b0a40	Lighttpd: support auth.backend = "htdigest"	12 years ago
Yaroslav Halchenko	2082fee7b1	ENH: match possibly present "pam_unix(sshd:auth):" portion for sshd (Closes: #648020 )	13 years ago
Yaroslav Halchenko	6ad55f64b3	ENH: add wu-ftpd failregex for use against syslog (Closes: #514239 )	13 years ago
Petr Voralek	4007751191	ENH: catch failed ssh logins due to being listed in DenyUsers. Close gh-47 (Closes: #669063 )	13 years ago
Xavier D	7a76838737	Add sample log file for asterisk	13 years ago
François Boulogne	115092956f	Correction of the IP in testcase for lighttpd	13 years ago
François Boulogne	683d4f269d	modifications suggested by a referee (log ex+regexp)	13 years ago
Yaroslav Halchenko	fceff2d5b9	moving log samples under testcases/files	13 years ago

1 2 3

121 Commits (cbed57bffd4aedd9fa1aba0ac6098aaba22bff2c)