sebres
d1fad22ac1
Avoid exact duplicates by addIgnoreIP (closes gh-1900)
7 years ago
sebres
8c804a2290
Merge branch 'master' into 0.10
...
# Conflicts resolved:
# config/filter.d/postfix-rbl.conf
# config/filter.d/postfix-sasl.conf
# config/filter.d/postfix.conf
# fail2ban/tests/files/logs/postfix-sasl
7 years ago
sebres
a2120a9de5
filter.d/postfix-*.conf - added optional port regex (closes gh-1902)
7 years ago
Serg G. Brester
6140a0f2d4
Merge pull request #1894 from sbraz/nftables-ipv6
...
Fix nftables actions for IPv6 addresses, fixes #1893
7 years ago
Serg G. Brester
6149df5216
Update ChangeLog
7 years ago
Louis Sautier
152c9d27d5
Fix nftables actions for IPv6 addresses, fixes #1893
...
* add [Init?family=inet6] to nftables-common.conf and make nftable
expressions more modular
* change "ip protocol" to "meta l4proto" in nftables-allports.conf
since the former only works for IPv4
7 years ago
Serg G. Brester
fbd46f29f2
Merge pull request #1891 from sbraz/openrc
...
Fix Gentoo init script's shebang
7 years ago
Serg G. Brester
72ad904f58
Update ChangeLog
7 years ago
Louis Sautier
2ce0ffb977
Fix Gentoo init script's shebang
...
Use openrc-run instead of runscript.
5d5856c193
7 years ago
Serg G. Brester
8be4569d51
Update ChangeLog
...
several fixes of 0.10th branch
7 years ago
sebres
b185e7cb04
Merge remote-tracking branch 'upstream/master' into 0.10
7 years ago
Serg G. Brester
983b128c54
Update ChangeLog
...
several fixes of 0.9th branch
7 years ago
Serg G. Brester
5221693ce0
Merge pull request #1889 from sebres/0.10-small-optim-review
...
0.10 small optimization & review, config-reader, pretty-dump, etc.
7 years ago
sebres
462b534469
restrict saving of previous known values to section-related (don't overwrite with the values of other sections, especially like "INCLUDES", etc.)
7 years ago
sebres
e20f6204d3
don't put parameters starting with `known/` to the ready stream (intermediate options only), makes streams and dumps of configuration shorter and better readable
7 years ago
sebres
b698a74902
introduces new command-line options `--dp`, `--dump-pretty` to dump the configuration using more human readable representation;
...
allow dump of configuration, also if log-file is not available (warning only)
7 years ago
Serg G. Brester
fd83260bd8
jail "pass2allow-ftp" should supply blocktype to action
...
closes gh-1884
7 years ago
Serg G. Brester
bb97e66627
Merge pull request #1882 from coderua/patch-1
...
Add Jorgee Vulnerability Scanner protect
7 years ago
Serg G. Brester
99a9a9136e
Merge pull request #1887 from fail2ban/exim-gh-1886
...
filter.d/exim.conf: fixed failregex for case of flood attempts with `D=0s`
7 years ago
Serg G. Brester
db121a6f85
Update exim
...
Test case covers flood attempts with `D=0s`
7 years ago
Serg G. Brester
2cd02b731b
filter.d/exim.conf: fixed failregex for case of `D=0s`
...
Closes gh-1886
7 years ago
sebres
4bc226a692
optimized regex
7 years ago
Vladimir Chumak
fafefc0293
Add Jorgee Vulnerability Scanner protect
...
Details for Jorgee Vulnerability Scanner: https://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=30164
7 years ago
sebres
acd9e8155b
Merge pull request #1376 from j-marz/master:
...
Added ZoneMinder filter
7 years ago
sebres
4163f32968
small review, prefix replaced with `%(_apache_error_client)s` from apache-common.conf include
7 years ago
john
ac95449bbb
changed zoneminder regex as per Sebres and yarikoptic recommendations
7 years ago
john
7013729a1f
removed redundant options for zoneminder from jail.conf
7 years ago
john
5c3a666380
fixed incomplete regex after adding anchors
7 years ago
john
3d45fd2713
implemented yarikoptic's suggestions in fail2ban pull request #1376
7 years ago
john
776d463e92
added missing colon to failJSON
7 years ago
john
4d8ba7b668
fixed test log file
7 years ago
john
44c4496e49
added sample log files
7 years ago
john
08878d22dd
added zoneminder.conf filter
7 years ago
john
a90f6c4ae8
added zoneminder jail and filter
...
# Conflicts:
# config/jail.conf
7 years ago
sebres
c312962029
filter.d/dovecot.conf: partially cherry-pick to 0.9 PR #1880 from sebres/0.10-fix-dovecot-regex ( d926e11a5c
)
...
fixed failregex (without new mode aggressive)
7 years ago
Serg G. Brester
d926e11a5c
Merge pull request #1880 from sebres/0.10-fix-dovecot-regex
...
filter.d/dovecot.conf: fixed failregex + new mode aggressive
7 years ago
sebres
2cfc53c08e
remove capturing groups
7 years ago
sebres
9b8563f35e
- fixes regex for message `imap-login: Disconnected (auth failed, X attempts) ...` has to many variations on additional info after `<HOST>`,
...
leave it end-anchored because variable part `user=<[^>]*>` (before `<HOST>`) to avoid injecting, but can be safe rewritten using `[^>]*` in opposite to "greedy" `user=<[^>]*>`.
- introduces mode `aggressive` and extends regex for this mode to match:
* no auth attempts (previously removed in gh-601, because of lots of false positives on misconfigured MTAs)
* disconnected before auth was ready
* client didn't finish SASL auth
7 years ago
Serg G. Brester
a287d0a05c
Merge pull request #1872 from kmzby/master
...
Added filter for phpMyAdmin+syslog
7 years ago
Serg G. Brester
569283063b
Merge pull request #1874 from sebres/fix-f2b-setup
...
setup.py: fix several setup facilities
7 years ago
Pavel Mihadyuk
4c1abe1cbf
phpmyadmin-syslog: removed excess file, fixed test, updated failregex
7 years ago
sebres
f451cf34b3
don't check return code by dry-run: returns 256 on some python/setuptool versions.
7 years ago
sebres
e3b061e94b
- `files/fail2ban.service` renamed as template to `files/fail2ban.service.in`;
...
- setup process generates `build/fail2ban.service` from `files/fail2ban.service.in` using distribution related bin-path;
- bug-fixing by running setup with option `--dry-run` (note: specify option `--dry-run` before `install`, like `python setup.py --dry-run install`);
- test cases extended to cover dry-run.
7 years ago
Pavel Mihadyuk
d09304b897
phpmyadmin-syslog: added default jail config
7 years ago
Pavel Mihadyuk
41994fcb56
Added filter for phpMyAdmin+syslog (>=4.7.0)
7 years ago
Pavel Mihadyuk
5b4bc2aafd
Added filter for phpMyAdmin+syslog (>=4.7.0). Closes #1713
7 years ago
sebres
1d5fbb95ae
Merge remote-tracking branch 'remotes/gh-upstream/master' into 0.10
7 years ago
Serg G. Brester
124e5587c6
Merge pull request #1869 from sebres/fix-gh-1389
...
action.d/bsd-ipfw.conf: replace not posix-compliant grep option
7 years ago
Serg G. Brester
b0e5efb631
bsd-ipfw.conf: sh-compliant redirect of stderr together with stdout
7 years ago
sebres
3be32adefb
Replace not posix-compliant grep option: fgrep with `-q` option can cause 141 exit code in some cases (see gh-1389).
7 years ago