github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
1,479 Commits
33 Branches
229 Tags
19 MiB
Commit Graph

1479 Commits (d661b8c046b05ad478172bfcffdc912cdea4d118)

Author SHA1 Message Date
Steven Hiscocks c0e8ce5854 NF: For action execution, log stdout and stderr if debug or cmd error 2013-05-01 21:07:13 +01:00
Yaroslav Halchenko e019ab784c Merge pull request #189 from kwirk/multiaction 
Allow creation of multiple of the same action for a filter -- use actname option. Close #37
 2013-04-30 12:44:16 -07:00
Yaroslav Halchenko cb6e47c871 Merge pull request #194 from grooverdan/defination-substitution 
ENH: Allow recursive tag substitution in action files
 2013-04-30 06:47:30 -07:00
Yaroslav Halchenko c09a3f86a5 Merge pull request #197 from grooverdan/bf-gh-153 
ENH: remove stats of config files
 2013-04-30 06:45:11 -07:00
Steven Hiscocks aab9df9f90 DOC: Document use of multiple actions with `actname` in jail.conf man 2013-04-29 23:41:10 +01:00
Steven Hiscocks f196709be1 ENH: Update asterisk example jail.conf entry for multiaction 2013-04-29 23:40:18 +01:00
Daniel Black 98aa0e23eb BF: log error only if there were missed config files that couldn't be read 2013-04-30 08:19:11 +10:00
Daniel Black d7862266d6 DOC: missing cinfo tags are ok. Log error for self referencing definitions 2013-04-30 08:14:50 +10:00
Daniel Black d28f3fa285 DOC: s/defination/definition/g learn to spell 2013-04-30 08:07:21 +10:00
jamesstout 0c2900e458 BF: fail2ban.local needs section headers 2013-04-30 05:41:29 +08:00
jamesstout 86a5de040b ENH: Use .local config files for logtarget and jail 
Per: https://github.com/fail2ban/fail2ban/pull/182#discussion_r3886353
 2013-04-30 04:35:36 +08:00
jamesstout 018913db6a ENH+TST: ssh failure messages for OpenSolaris and OS X 2013-04-30 04:24:56 +08:00
jamesstout 3367dbd987 ENH: fail message matching for OpenSolaris and OS X 
- OpenSolaris keyboard message matched by new regex 3
- Removed Bye Bye regex per
https://github.com/fail2ban/fail2ban/issues/175#issuecomment-16538036
- PAM auth failure or error and first char case-insensitive, can also
have chars after the hostname. e.g.

Apr 29 16:53:38 Jamess-iMac.local sshd[47831]: error: PAM:
authentication error for james from 205.186.180.101 via 192.168.1.201
 2013-04-30 04:23:13 +08:00
jamesstout d2a9537568 ENH: extra daemon info regex 
for matching log lines like:
Mar 29 05:20:09 dusky sshd[19558]: [ID 800047 auth.info] Failed
keyboard-interactive for james from 205.186.180.30 port 54520 ssh2

this matches  [ID 800047 auth.info]
 2013-04-30 04:14:36 +08:00
jamesstout b7795addd0 ENH: actionunban back to a sed command 
per https://github.com/fail2ban/fail2ban/pull/182#discussion_r3999128
 2013-04-30 04:10:32 +08:00
Yaroslav Halchenko 4f59e14616 Changelog entry for the previous commit and some untabify 2013-04-29 14:00:25 -04:00
Yaroslav Halchenko f21566049c BF: pyinotify backend should also handle IN_MOVED_TO events 2013-04-29 13:54:14 -04:00
Yaroslav Halchenko 2a0ce5da09 Merge pull request #196 from grooverdan/bf-gh-70 
date format in emails: use LC_TIME=C. Close #70
 2013-04-29 07:30:56 -07:00
Daniel Black 2403f395e9 ENH: remove stats of config files and use results of SafeConfigParserWithIncludes.read to facilitate meaningful error messages 2013-04-29 15:33:45 +10:00
Daniel Black f91ad7e878 DOC: credits for gh-70 fix 2013-04-29 14:12:15 +10:00
Daniel Black 945ad3d9e6 BF: ensure dates in email are in the C locale. Thanks iGeorgeX 2013-04-29 14:10:23 +10:00
Daniel Black e5474e57aa DOC: ChangeLog for recursive tag substition 2013-04-29 12:38:42 +10:00
Daniel Black 1d9abd1b39 ENH: allow recursive tag substitution in action files. 2013-04-29 12:37:16 +10:00
Steven Hiscocks 219860ed8e BF: Raise ValueError for adding of duplicate named action 2013-04-28 13:23:57 +01:00
Steven Hiscocks 6d2ff47e71 NF: Allow return of list of actions from jail via fail2ban-client 2013-04-28 13:23:06 +01:00
Yaroslav Halchenko 7b87afef48 Merge pull request #192 from grooverdan/gentoo-bug-182661 
Gentoo bug 182661 - named-refused to account for view
 2013-04-27 19:22:36 -07:00
Yaroslav Halchenko 503ef5a630 Merge pull request #191 from grooverdan/misc 
release procedures with distributors
 2013-04-27 19:21:42 -07:00
Daniel Black 6a4605a675 DOC: document <br> tag 2013-04-28 11:26:03 +10:00
Daniel Black f2f5234076 DOC: ChangeLog for named-refused entry 2013-04-28 11:05:07 +10:00
Daniel Black 0ac8746d05 ENH: Account for views in named filter. By Romain Riviere in gentoo bug #259458 2013-04-28 11:03:44 +10:00
Daniel Black 63870341d8 DOC: release documentation and distributor contacts 2013-04-28 10:44:05 +10:00
Daniel Black a0bb5163df DOC: changelog entry for enhanced ssh filter 2013-04-28 09:23:41 +10:00
Steven Hiscocks a3e216b0b2 BF: Change name->actname for multi action jails to avoid clash 
Primary examples is `name` is used in iptables actions for the chain.
Also changed pop->get so actname can be used as keyword
 2013-04-27 20:56:31 +01:00
Steven Hiscocks d07df66370 NF: Allow setting of timeout for execution of action commands 
This uses subprocess.Popen, polling until `timeout` seconds has passed
or the command has exit. If the command has not exited, fail2ban then
sends SIGTERM, and if this is unsuccessful, SIGKILL.

The timeout can be changed for an entire action via action [Init]
options, or via jail.conf override, or fail2ban-client. The default
timeout period is 60 seconds.
 2013-04-27 20:06:09 +01:00
Steven Hiscocks bec70cbe4b TST: Clean up after jails test for MultipleSameAction 2013-04-27 19:11:58 +01:00
Yaroslav Halchenko c5287e3d9c BF: Rename mentioning of README to README.md (Fixes #187) 2013-04-26 22:51:59 -04:00
Steven Hiscocks 45c9c45b41 BF+RF: Allow multiple of same action in a single jail 2013-04-25 22:36:08 +01:00
Steven Hiscocks 7a29a952c1 TST: Add test case for jails with multiple of the same action 2013-04-25 22:34:07 +01:00
Yaroslav Halchenko 03687264d8 Merge pull request #186 from yarikoptic/master 
Make README.md a bit github aware
 2013-04-25 11:56:16 -07:00
Yaroslav Halchenko ce912bb11c updated README.md to hyperlink, add travis and coversall 
for some reason coversall says 'unknown' -- may be it requires a paid account for the badges?
 2013-04-25 01:07:39 -03:00
Yaroslav Halchenko 61949b4ff7 Moving README into a markup README.md for github's goodnesses 2013-04-24 23:23:31 -04:00
Yaroslav Halchenko e5261aade6 changelog for new jail.conf 2013-04-24 16:08:54 -04:00
Yaroslav Halchenko bddbf1e398 Merge pull request #185 from yarikoptic/_tent/jail.conf 
"Debian-style" jail.conf -- lean and nice (Fixes #156) + more testing.
 2013-04-24 12:10:18 -07:00
Yaroslav Halchenko 62602a9ed0 Revert "ENH: by default enable a single jail -- sshd" 
This reverts commit 47a62b6072.

Enabling any jail by default should be a prerogative of particular
distributions (thanks Fabian Wenk for the discussion)

Conflicts:
	config/jail.conf
 2013-04-23 13:58:58 -04:00
Yaroslav Halchenko 1d72a8265d Merge branch '0.9' into _tent/jail.conf 
* 0.9:
  BF: usedns deals with forward (not reverse) DNS lookups (thanks Steven Hiscocks)

Conflicts:
	config/jail.conf
 2013-04-23 13:57:52 -04:00
Yaroslav Halchenko 2a48b0ab54 Merge branch 'master' into 0.9 
* master:
  BF: usedns deals with forward (not reverse) DNS lookups (thanks Steven Hiscocks)
 2013-04-23 13:57:07 -04:00
Yaroslav Halchenko 22f04677b6 BF: usedns deals with forward (not reverse) DNS lookups (thanks Steven Hiscocks) 2013-04-23 13:56:51 -04:00
Yaroslav Halchenko 87bac37139 ENH: default port to all ports (0:65535) + remove where thus not needed + typos 2013-04-23 13:55:26 -04:00
Yaroslav Halchenko 203ddb370a PY3(BF): config reader -- handle __name__ interpolation 2013-04-23 10:10:49 -04:00
Yaroslav Halchenko d05e7a5746 TST: elaborate pass through the default jail.conf with basic checking of shipped filters and actions 2013-04-22 23:47:52 -04:00