github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
1,960 Commits
34 Branches
230 Tags
19 MiB
Commit Graph

1960 Commits (fdcded262d0ab5d72e484ff2ac5caac09de1b2ac)

Author SHA1 Message Date
Steven Hiscocks fdcded262d BF: Handle case when inotify watch is auto deleted on file deletion 
When a file is deleted, the watcher for it is automatically removed.
FilterPyinotify is detecting a new file being created with the same
name, and in turn attempts to remove the watch for the deleted file
(which has already been removed automatically).

Also, IN_IGNORED events are generated when a file is deleted, but these
weren't being caught, causing an non-existent file path to be passed to
FilterPyinotify._process_file (which caught the exceptions in
Filter.getFailures).
 2014-03-29 16:38:39 +00:00
Daniel Black dfac2f700a Merge pull request #647 from yarikoptic/0.8 
Minor fixes for claimed compatibility with 2.4 and 2.5 -- not to be "merged" into 0.9
 2014-03-17 08:36:59 +11:00
Yaroslav Halchenko bb2d981bf8 Changelog entry 2014-03-16 11:25:12 -04:00
Yaroslav Halchenko 18b476a93e BF(PY2.4,2.5): provide bin() function (introduced in 2.6) 2014-03-16 11:15:00 -04:00
Yaroslav Halchenko 9cbb472478 BF: python 2.4 and 2.5 compatibility -- no "except ... as ..." yet 2014-03-16 10:35:58 -04:00
Daniel Black a8d0cc9af8 DOC: remove duplicate update of Fail2ban_Version 2014-03-15 21:59:22 +11:00
Daniel Black eb66edd338 DOC: DEVELOP release note changes 2014-03-15 19:14:36 +11:00
Daniel Black cee3414029 PKG: version release 2014-03-15 19:06:37 +11:00
Daniel Black 0601a07961 PKG: include nagios filter/log 2014-03-15 19:06:18 +11:00
Daniel Black 123791c94c DOC/ENH: update man pages for release 2014-03-15 18:52:18 +11:00
Daniel Black 77fda9498c ENH: pull asterisk filter change to support syslog from 0.9 branch 2014-03-14 23:15:46 +11:00
Daniel Black c3a2e8fbac Merge pull request #644 from hlein/master 
ENH: Changes to --print-* options and memory use for fail2ban-regex
 2014-03-14 22:32:41 +11:00
Hank Leininger 2deb1b71a1
Sanity-check print-all-* vs print-no-* options. 
Also, fixed a trivial whitespace issue.
 2014-03-14 02:10:00 -04:00
Hank Leininger d4fb48fd14
Add --print-no-{missed,ignored} and restore -all. 
Realized --print-all-{missed,ignored} aren't meant to be simple on/off,
but are meant to enable printing all lines even when there are more
than 20.

This restores the behavior of --print-all-*, but preserves the
memory-savings when --print-all-* are not specified.

Also adds --print-no-{missed,ignored} which can be used to suppress
printing of a line type entirely.
 2014-03-14 01:57:55 -04:00
Hank Leininger aa7af6f9c2
Only remember log lines we need to print later. 
When testing proccessing a large logfile (430 MB, 2M lines) without
--print-all-missed or --print-all-ignored, fail2ban-regex consumes
just over 2 GB of RAM before completing.  Even though it does not need
to retain any of the missed or ignored log lines, it does anyway.

With this patch, memory use never grows beyond about 11 MB (unless
--print-all-* are enabled).
 2014-03-13 23:18:08 -04:00
Hank Leininger 27dafea281
Fix the --print-all-{missed,ignored} options. 
Previously, fail2ban-regex always printed both regardless of whether
those options were present or not.

This commit duplicates the patch I submitted at
https://sourceforge.net/p/fail2ban/patches/25/
 2014-03-13 22:47:28 -04:00
Daniel Black 415f187644 ENH: sendmail-reject for all smtp ports. 2014-03-14 07:12:12 +11:00
Daniel Black 11fc7941f5 Merge pull request #633 from grooverdan/sendmail 
MRG: Sendmail filter
 2014-03-02 14:25:26 +11:00
Daniel Black 853bed8e4f ENH: more sendmail-reject filter items thanks to fab23 2014-03-02 14:04:27 +11:00
Daniel Black d0ec09a3b5 BF: move to right location 2014-03-01 15:50:30 +11:00
Daniel Black c10cc20928 ENH: rename sendmail-spam to sendmail-reject 2014-02-28 08:41:04 +11:00
Daniel Black d34569fb8d BF: email address as arg1 in sendmail filters 2014-02-27 11:38:23 +11:00
Daniel Black 72c84fe9b0 ENH: wider regex for RBL and sendmail-spam 2014-02-27 10:02:34 +11:00
Steven Hiscocks 75599fc7a0 DOC: Add reference to action argument values which contain "," 
Closes gh-632
 2014-02-26 22:15:59 +00:00
Steven Hiscocks 9b877928db Merge pull request #631 from grooverdan/sendmail 
ENH: add filter for sendmail-{auth,spam}. Closes gh-20
 2014-02-26 18:38:18 +00:00
Daniel Black fe1725c603 BF: add jail.conf definitions for sendmail* filters 2014-02-26 19:31:09 +11:00
Daniel Black 3d776afbb0 ENH: add filter for sendmail-{auth,spam}. Closes gh-20 2014-02-26 19:16:49 +11:00
Daniel Black 9be22a96a6 Merge pull request #614 from kwirk/complain-abusix 
BF: Use abusix Abuse Contact DB to get more accurate abuse addresses
 2014-02-20 09:17:23 +11:00
Daniel Black a90be951e9 Merge pull request #624 from kwirk/ignoreip-netmask 
ENH: Allow 255.255.255.0 style mask for ignoreip
 2014-02-20 07:23:46 +11:00
Steven Hiscocks 9928f1df96 ENH: Allow 255.255.255.0 style mask for ignoreip 2014-02-19 17:51:08 +00:00
Steven Hiscocks 997729e274 BF: Fix complain action for multiple recipients and misplaced ";" 2014-02-18 15:05:06 +00:00
Daniel Black 350d2dfd8e Merge pull request #618 from kwirk/xt_recent-tweaks 
ENH: Add root user check in xt_recent, and add missing actionstop
 2014-02-18 08:15:22 +11:00
Steven Hiscocks 4102f4f8c7 TST: Fix TravisCI build, install of coveralls from pip 2014-02-16 23:08:49 +00:00
Steven Hiscocks 7c76f7f204 BF: $EUID not avilable in all shells, replaced with `id -u` in xt_recent 2014-02-16 17:56:06 +00:00
Steven Hiscocks 2a37ee2fb7 ENH: Add root user check in xt_recent, and add missing actionstop 
Thanks to Helmut Grohne on IRC for suggestion
 2014-02-16 16:52:30 +00:00
Steven Hiscocks 31f4ea59cb BF: Use abusix Abuse Contact DB to get more accurate abuse addresses 
Taken from xarf-login-attack action from 0.9 branch by Daniel Black
 2014-02-13 22:00:33 +00:00
Steven Hiscocks 9bfc77c320 BF: fail2ban-client processCmd ret was being overwritten each loop 2014-02-13 20:03:45 +00:00
Steven Hiscocks 1e9910fcb0 ENH: Added traceback for error log on pyinotify callback when in debug 
Thanks to Helmut Grohne for idea on #fail2ban IRC
 2014-02-12 22:18:09 +00:00
Steven Hiscocks bda9b7d725 BF: Add handling of exception in pyinotify callback 
If error isn't handled, no error messages are printed and the jail
ceases to function.
 2014-02-12 18:07:31 +00:00
Daniel Black fb557761e4 Merge pull request #610 from tecnocat/patch-1 
BF: Duplicate jail "php-url-fopen"
 2014-02-11 07:56:00 +11:00
Aarón Nieves Fernández 993b7d3dfb Duplicate jail "php-url-fopen" 2014-02-10 21:41:50 +01:00
Steven Hiscocks 3cbfe9b057 BF: `ret` now changed after beautifier called 2014-02-08 22:15:19 +00:00
Yaroslav Halchenko c424e4032d DOC: minor - replace tabs with spaces for consistent formatting 2014-02-07 00:41:22 -05:00
Daniel Black 1c740636e3 Merge pull request #603 from truxoft/master 
ENH: Nagios filter
 2014-02-06 11:09:49 +11:00
Ivo Truxa c207ad6058 removing ignoreip at [nagios] 
I removed the ignoreip setting from the nagios section. As pointed out, it is redundant here. Nagios server, under normal circumstances should not trigger any access errors, and would be included in the global ignoreips anyway.
 2014-02-06 00:27:38 +01:00
Ivo Truxa f5f434f846 removing the second failregex 
The second failregex was supposed to catch an error concerning an ACL denial over IPv6, but this message is no more generated by the nrpe version (v2.15) that introduced the IPv6 support, so the first failregex seems to be sufficient.
 2014-02-06 00:22:05 +01:00
Daniel Black 338d40f717 Merge pull request #606 from cmarkle/patch-1 
Correct spelling error in changelog
 2014-02-06 07:50:04 +11:00
Chris Markle 20886288e5 Correct spelling error in changelog 
I know it's a nit but still... ;)
 2014-02-05 10:44:46 -08:00
Ivo Truxa f6ccd8878d date fix 
sorry, need to get some glasses
 2014-02-03 23:27:19 +01:00
Ivo Truxa a71bb89ccd removing a dot (typo) 
The dot at the ignoregex did not belong there. Somehow it was added during the copying and pasting. Thanks for reporting it, I did not see it. Otherwise, empty ignoregexes are in all filters, and if they are missing, fail2ban client shows warnings when starting the filter, which I prefer avoiding.
 2014-02-03 23:12:56 +01:00