You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
fail2ban/config/filter.d
Sergey G. Brester 514cca9ade
filter.d/sendmail-auth.conf: detect failures without user part
2 years ago
..
ignorecommands filter.d/ignorecommands/apache-fakegooglebot: added timeout parameter (default 55 seconds) - avoid fail with timeout (default 1 minute) by reverse lookup on some slow DNS services (googlebots must be resolved fast); 4 years ago
3proxy.conf
apache-auth.conf filter.d/apache-auth.conf: 5 years ago
apache-badbots.conf Merge remote-tracking branch 'upstream/master' into 0.10 7 years ago
apache-botsearch.conf Merge branch 'master' into 0.10 7 years ago
apache-common.conf filter.d/apache-auth.conf: 5 years ago
apache-fakegooglebot.conf
apache-modsecurity.conf updated 6 years ago
apache-nohome.conf
apache-noscript.conf filter.d/apache-noscript.conf: extended to match "script not found" with error AH02811 (and cgi-bin path segment in script) 4 years ago
apache-overflows.conf filter.d/apache-overflows.conf: extended to match AH00126 error (Invalid URI ...); 4 years ago
apache-pass.conf
apache-shellshock.conf Merge remote-tracking branch 'remotes/gh-upstream/master' into 0.10 7 years ago
assp.conf
asterisk.conf filter.d/asterisk.conf: relaxing protocol RE-part before IP in RemoteAddress (gh-2531) 5 years ago
bitwarden.conf review and small tweaks (more precise and safe RE) 4 years ago
botsearch-common.conf
centreon.conf Add Centreon jail 5 years ago
common.conf common.conf: fixed typo in comment (rfc5424 for logtype) 3 years ago
counter-strike.conf
courier-auth.conf filter.d/courier-auth.conf: consider optional port after IP, regex is rewritten without catch-all's and right anchor, so it is more stable against further modifications now; 3 years ago
courier-smtp.conf filter.d/courier-smtp.conf: prefregex extended to consider port in log-message (closes gh-2697) 5 years ago
cyrus-imap.conf
directadmin.conf
domino-smtp.conf filter.d/domino-smtp.conf: 6 years ago
dovecot.conf cherry pick #3210 from master 3 years ago
dropbear.conf
drupal-auth.conf
ejabberd-auth.conf
exim-common.conf filter.d\exim-common.conf: pid-prefix extended to match `mx1 exim[...]:` (gh-2553) 4 years ago
exim-spam.conf
exim.conf filter.d/exim.conf: failregex extended with SMTP call dropped: too many syntax or protocol errors. 7 years ago
freeswitch.conf filter.d/freeswitch.conf: provide mode parameter, allows to avoid matching of messages like `auth challenge (REGISTER)` (see gh-2163) (currently `extra` as default to be backwards-compatible), see comments in filter how to set it to mode `normal`. 6 years ago
froxlor-auth.conf
gitlab.conf New Gitlab jail 5 years ago
grafana.conf no catch-alls, user name and error message stored in ticket 4 years ago
groupoffice.conf
gssftpd.conf
guacamole.conf Enhance Guacamole jail 4 years ago
haproxy-http-auth.conf
horde.conf
kerio.conf
lighttpd-auth.conf filter.d/lighttpd-auth.conf: adjusted to the current source code + avoiding catch-all's, etc (gh-3116) 3 years ago
mongodb-auth.conf
monit.conf filter.d/common.conf: closes gh-2650, avoid substitute of default values in related `lt_*` section, `__prefix_line` should be interpolated in definition section (after the config considers all sections that can overwrite it); 5 years ago
murmur.conf filter.d/murmur.conf: fixed detection of failures reading from journal (systemd-backend only): 7 years ago
mysqld-auth.conf filter.d/mysqld-auth.conf: capture user name in filter (can be more strict if user switched, used in action or fail2ban-regex output); 5 years ago
nagios.conf
named-refused.conf filter.d/named-refused.conf: fixes prefix for messages from systemd journal (no mandatory space ahead, because don't have timestamp) 4 years ago
nginx-botsearch.conf
nginx-http-auth.conf Merge remote-tracking branch 'remotes/gh-upstream/master' into 0.10 7 years ago
nginx-limit-req.conf Merge remote-tracking branch 'master' into 0.10 7 years ago
nsd.conf
openhab.conf
openwebmail.conf
oracleims.conf
pam-generic.conf quick optimization: normalizes pam-generic prefregex (more similar to the same regex within sshd-filter) + datepattern anchored now; 7 years ago
perdition.conf
php-url-fopen.conf
phpmyadmin-syslog.conf typo 4 years ago
portsentry.conf
postfix.conf filter.d/postfix.conf: extended to cover new vectors: 4 years ago
proftpd.conf typo 4 years ago
pure-ftpd.conf
qmail.conf
recidive.conf filter.d/recidive.conf: fixed if logging into systemd-journal (SYSLOG) with daemon name in prefix, gh-2069 7 years ago
roundcube-auth.conf
screensharingd.conf
selinux-common.conf
selinux-ssh.conf
sendmail-auth.conf filter.d/sendmail-auth.conf: detect failures without user part 2 years ago
sendmail-reject.conf filter.d/sendmail-reject.conf: fix reverse DNS for ... (gh-3012) 4 years ago
sieve.conf
slapd.conf
softethervpn.conf small tweaks (both 2nd time and facility are optional, avoid catch-all, etc) 4 years ago
sogo-auth.conf Merge branch 'master-0.9' into 0.10 6 years ago
solid-pop3d.conf
squid.conf
squirrelmail.conf
sshd.conf filter.d/sshd.conf: `ddos` mode extended - recognizes messages "kex_exchange_identification: Connection closed / reset by pear" (fixed possible regression of f77398c49d); 3 years ago
stunnel.conf
suhosin.conf
tine20.conf
traefik-auth.conf filter.d/traefik-auth.conf: filter extended with parameter mode (`normal`, `ddos`, `aggressive`) to handle the match of username differently: 5 years ago
uwimap-auth.conf
vsftpd.conf
webmin-auth.conf
wuftpd.conf
xinetd-fail.conf
znc-adminlog.conf filter.d/znc-adminlog.conf: support logging format of systemd-journal, bypass port after address (optional, removed end-anchor, see gh-2520) 5 years ago
zoneminder.conf small review, prefix replaced with `%(_apache_error_client)s` from apache-common.conf include 7 years ago