github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
3,898 Commits
33 Branches
229 Tags
18 MiB
Commit Graph

3898 Commits (ce2b4fe634bea9e4d629ba27bf4f7de47472c52c)

Author SHA1 Message Date
Alexander Koeppe db9f3f738f add ip6-loopback to default ignoreip statement 2016-05-09 15:32:42 +02:00
Alexander Koeppe d125f882d4 explicitely treat join arguments as string in beautifier 2016-05-09 15:29:05 +02:00
sebres afe1f73af2 meantime commit: code review, simplification, pythonization, etc. (test cases passed) 
unnecessarily code aggravation with explicit converting reverted - implicit converting inside internal functions if not IPAddr object;
 2016-05-09 15:28:21 +02:00
Alexander Koeppe 85b895178b change IP address string to object handling part 1 
# Conflicts:
#	fail2ban/server/filter.py
 2016-05-04 14:07:12 +02:00
sebres 07c9f38e45 meantime commit: code review, simplification, pythonization, etc. (test cases passed) 2016-05-04 14:02:03 +02:00
Alexander Koeppe a757037671 Make DNS resolution IP address family idependent 2016-05-04 13:51:15 +02:00
sebres 3893a6b780 meantime commit: code review, simplification, pythonization, etc. 2016-05-04 13:50:37 +02:00
Alexander Koeppe a093828602 Make ignoreip checking address family idependent 2016-05-04 12:53:56 +02:00
sebres 1308744348 meantime commit: code review, simplification, pythonization, etc. 2016-05-04 12:53:34 +02:00
Alexander Koeppe 01e1383c9b New class IPAddr for handling IPv4 and IPv6 addresses 2016-05-04 12:21:48 +02:00
sebres 05f38285f1 Merge remote-tracking branch 'remotes/gh-upstream/master' into f2b-perfom-prepare-716 2016-05-02 15:40:05 +02:00
Yaroslav Halchenko 9664406719 Merge pull request #1404 from Aeyoun/patch-1 
Assert https not http
 2016-04-30 12:23:47 -04:00
Daniel Aleksandersen 75eb240846 Assert https not http 
Resolves test regression from issue #1395.
 2016-04-30 16:18:56 +02:00
Yaroslav Halchenko 2948026a60 Merge pull request #1395 from Aeyoun/patch-2 
Use HTTPS in Debuggex URLs
 2016-04-27 21:14:16 -04:00
Yaroslav Halchenko d7b0a2f249 Merge pull request #1397 from jungle-boogie/patch-1 
update doc url
 2016-04-27 21:13:55 -04:00
Yaroslav Halchenko d2f1de5da8 Merge pull request #1400 from yarikoptic/bf-cymru 
BF+ENH: fixed up testing querying cymru information + assert_dict_equal
 2016-04-27 08:36:42 -04:00
Yaroslav Halchenko 340a5a23f4 BF+ENH: fixed up testing querying cymru information + assert_dict_equal helper 2016-04-26 09:30:36 -04:00
jungle-boogie d889918f19 update doc url 
direct to confluence page. no code changes.
 2016-04-24 21:35:18 -07:00
Daniel Aleksandersen add67227f4 Use HTTPS in Debuggex URLs 2016-04-24 02:20:02 +02:00
Yaroslav Halchenko aa303acfd6 Merge pull request #1381 from theDogOfPavlov/patch-3 
Tightened up exim regexes to catch rDNS entries
 2016-04-23 18:27:38 -04:00
sebres e595fefc9b change log and thanks entries 2016-04-14 14:50:17 +02:00
Alexandre Perrin 7712310d2d Be more backward compatible on matching postfix/smtps/smtpd 
Support trailing smtps also and not only smtpd.

suggested by @sebres
 2016-04-14 13:54:58 +02:00
Alexandre Perrin 1a299409e5 Fix postfix/smtps/smtpd matching. 2016-04-14 12:10:58 +02:00
theDogOfPavlov fcca1413b0 rDNS tests 
added additional tests to cover logs with rDNS
 2016-04-01 18:47:19 +01:00
theDogOfPavlov 1eb51b1bc2 Tightened up regexes to catch rDNS entries 2016-04-01 18:07:01 +01:00
Yaroslav Halchenko 1153c0a5c6 Merge pull request #1359 from yarikoptic/bf-blocktype 
BF: Include iptables-common (not removed iptables-blocktype) within firewallcmd- actions
 2016-04-01 07:19:28 -04:00
sebres 9d7e860edb possibility to increase verbosity up to heavy debug (partial ported from 716-cs) 2016-04-01 10:38:11 +02:00
Yaroslav Halchenko db2dd070ad Merge pull request #1356 from opoplawski/bug-1354 
Fedora use mariadb by default, fix log path
 2016-03-31 22:11:10 -04:00
Serg G. Brester b9b7ecbf6b Merge pull request #1357 from sebres/monit-new-fltr 
monit filter fixup for the new version (gh-1355)
 2016-03-26 11:39:26 +01:00
TorontoMedia 3d239215cd Two new firewalld actions with rich rules for firewalld-0.3.1+ (gh-1367) 
closes #1367
 2016-03-25 17:28:30 +01:00
sebres ac27c9cb96 Merge branch 'patch-2' (gh-1371) 2016-03-25 17:05:23 +01:00
Serg G. Brester 0effe76971 Merge pull request #1370 from theDogOfPavlov/patch-1 
Added regex for LDAP authentication failures
 2016-03-25 15:30:39 +01:00
Serg G. Brester fad4121709 Merge pull request #1365 from jblachly/sshd-pam-failed 
SmartOS PAM Authentication failed (not failURE)
 2016-03-24 13:47:49 +01:00
jblachly e9202fa0b2 Placed failure (illumos) at end of regex 2016-03-24 00:43:15 -04:00
theDogOfPavlov 33ef2311e7 added tests to cover exim regex additions 2016-03-23 11:58:03 +00:00
theDogOfPavlov 28e246b5d7 added note to cover additional exim filters 2016-03-23 11:52:09 +00:00
theDogOfPavlov 42f43d0f8a added note to cover dovecot ldap regex 2016-03-23 11:51:12 +00:00
theDogOfPavlov eaf6bbb08f add test to catch LDAP auth failures 2016-03-23 11:47:31 +00:00
theDogOfPavlov fe1475be95 Additional exim regexes to cover common attacks... 2016-03-21 05:59:59 +00:00
theDogOfPavlov cf2aa9c1c0 Added regex for LDAP authentication failures 2016-03-21 05:53:23 +00:00
jblachly 25c2334bc8 SmartOS PAM Authentication failed (not failURE) 
SmartOS (and likely other Illumos platforms) enter log entries for failed sshd logins of the form:
`Authentication failed for USER from HOST`
The current sshd.conf regex matches `failure` -- add to this a match for `failed` to support Illumos
 2016-03-16 13:52:01 -04:00
Yaroslav Halchenko bfac42eb2e changelog for journalmatch pure-ftpd 2016-03-14 11:10:28 -04:00
Yaroslav Halchenko 86024f745b Merge pull request #1362 from weberhofer/patch-2 
define journalmatch setting for pure-ftps
 2016-03-14 11:09:16 -04:00
Johannes Weberhofer bd25a43417 define journalmatch setting for pure-ftps 2016-03-11 18:19:53 +01:00
sebres 74b88e1706 fix sporadic bugs by starting of fast actions (execute fast sub processes), cherry picked from "f2b-perfom-prepare-716-cs": 
- missing `popen` variable if not started;
- better readability for stdout and stderr in log (+ check log level before do logging);
 2016-03-10 15:10:26 +01:00
sebres 01b379ab2e fix sporadic bugs within asyncserver, cherry picked from "f2b-perfom-prepare-716-cs": 
- differentiate between in loop and active (reset active only after really leaves a loop);
- differentiate between foreign and self loop-thread by stop/close connection;
- stops logging connection errors if too many errors;
- safe remove socket (no sporadic errors if too fast start/stop occurred);
 2016-03-10 15:09:54 +01:00
Yaroslav Halchenko eed1a0d686 BF: Include iptables-common (not removed iptables-blocktype) within firewallcmd- actions (Closes #1254) 2016-03-09 23:06:59 -05:00
Yaroslav Halchenko deca0b80ab ENH: removed double tab indentation, pass use_poll into loop, reorderd log msg to come after action to be factually correct 2016-03-09 22:22:29 -05:00
Yaroslav Halchenko c84b6370c5 ENH: remove some code duplication, enhance docstrings, uniformize naming 2016-03-09 22:22:29 -05:00
Yaroslav Halchenko 7eafb0c206 ENH: avoid subclassing dict (in favor of delegating) if not entire interface is used/adjusted 
since otherwise use of dict"s __getitem__ could lead to undesired effects etc
 2016-03-09 22:22:29 -05:00