mirror of https://github.com/fail2ban/fail2ban
53 lines
2.5 KiB
Plaintext
Executable File
53 lines
2.5 KiB
Plaintext
Executable File
#! /bin/sh /usr/share/dpatch/dpatch-run
|
|
## 00_daemon_pids.dpatch by Yaroslav Halchenko <debian@onerussian.com>
|
|
##
|
|
## All lines beginning with `## DP:' are a description of the patch.
|
|
## DP: Optional PID entry which might not be present due to configuration. Also failregex for wu-ftpd got hardened with $ at the end.
|
|
|
|
@DPATCH@
|
|
diff -urNad trunk~/config/filter.d/pure-ftpd.conf trunk/config/filter.d/pure-ftpd.conf
|
|
--- trunk~/config/filter.d/pure-ftpd.conf 2007-05-05 21:30:21.000000000 -0400
|
|
+++ trunk/config/filter.d/pure-ftpd.conf 2007-06-19 23:08:40.000000000 -0400
|
|
@@ -19,7 +19,7 @@
|
|
# (?:::f{4,6}:)?(?P<host>\S+)
|
|
# Values: TEXT
|
|
#
|
|
-failregex = pure-ftpd: (.+?@<HOST>) \[WARNING\] %(__errmsg)s \[.+\]$
|
|
+failregex = pure-ftpd(?:\[\d+\])?: (.+?@<HOST>) \[WARNING\] %(__errmsg)s \[.+\]$
|
|
|
|
# Option: ignoreregex
|
|
# Notes.: regex to ignore. If this regex matches, the line is ignored.
|
|
diff -urNad trunk~/config/filter.d/sshd-ddos.conf trunk/config/filter.d/sshd-ddos.conf
|
|
--- trunk~/config/filter.d/sshd-ddos.conf 2007-05-05 21:30:21.000000000 -0400
|
|
+++ trunk/config/filter.d/sshd-ddos.conf 2007-06-19 23:09:56.000000000 -0400
|
|
@@ -14,7 +14,7 @@
|
|
# (?:::f{4,6}:)?(?P<host>\S+)
|
|
# Values: TEXT
|
|
#
|
|
-failregex = sshd\[\S*\]: Did not receive identification string from <HOST>
|
|
+failregex = sshd(?:\[\d+\])?: Did not receive identification string from <HOST>$
|
|
|
|
# Option: ignoreregex
|
|
# Notes.: regex to ignore. If this regex matches, the line is ignored.
|
|
diff -urNad trunk~/config/filter.d/vsftpd.conf trunk/config/filter.d/vsftpd.conf
|
|
--- trunk~/config/filter.d/vsftpd.conf 2007-05-05 21:30:21.000000000 -0400
|
|
+++ trunk/config/filter.d/vsftpd.conf 2007-06-19 23:10:26.000000000 -0400
|
|
@@ -14,7 +14,7 @@
|
|
# (?:::f{4,6}:)?(?P<host>\S+)
|
|
# Values: TEXT
|
|
#
|
|
-failregex = vsftpd: .* authentication failure; .* rhost=<HOST>$
|
|
+failregex = vsftpd(?:\[\d+\])?: .* authentication failure; .* rhost=<HOST>$
|
|
\[.+\] FAIL LOGIN: Client "<HOST>"$
|
|
|
|
# Option: ignoreregex
|
|
diff -urNad trunk~/config/filter.d/wuftpd.conf trunk/config/filter.d/wuftpd.conf
|
|
--- trunk~/config/filter.d/wuftpd.conf 2007-05-05 21:30:21.000000000 -0400
|
|
+++ trunk/config/filter.d/wuftpd.conf 2007-06-19 23:11:59.000000000 -0400
|
|
@@ -11,4 +11,4 @@
|
|
# Notes.: regex to match the password failures messages in the logfile.
|
|
# Values: TEXT
|
|
#
|
|
-failregex = wu-ftpd\[\d+\]:\s+\(pam_unix\)\s+authentication failure.* rhost=<HOST>
|
|
+failregex = wu-ftpd(?:\[\d+\])?:\s+\(pam_unix\)\s+authentication failure.* rhost=<HOST>$
|