github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
fail2ban/config/filter.d
History
Yaroslav Halchenko 8487cb2e90 Merge commit '0.8.10-31-g1ab0f0f' into 0.9 
* commit '0.8.10-31-g1ab0f0f': (24 commits)
  BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address
  ENH: readibility thanks to Yaroslav
  DOC: Changelog for fail2ban-regex RF
  DOC: Changelog for asterisk hardening
  ENH: fail2ban-regex -- add specification of loglevels to enable
  RF: reworked -regex cmdline tool to use optparse, some unification and enhancement of outputs
  ENH: 'heavydebug' level == 5 for even more debugging in tricky cases
  ENH: asterisk -- use \S instead of [^:] + prefix failregex with ^\[
  BF: missed a space
  BF: [SSL-out] is optional in assp
  ENH: regex hardening on assp
  ENH: anchor a bit mor. Use \d and \w where possible. Escape a literal .
  TST: attempts at injection with username=rhost=1.2.3.4 have no user= logged in dovecot-1.2.15
  ENH: proftpd chan accept usernames with spaces
  ENH: injection of fail data into USER field
  ENH: dovecot regexs rewritten and extra failures
  ENH: proftp regex hardening and log messages
  ENH/BF: exim improvements with sample
  BF: fix to proxy port in 3proxy example
  ENH: sample log + more specific regex
  ...

Conflicts: -- it was a messy merge/resolution.
	ChangeLog
	bin/fail2ban-regex
	fail2ban-testcases
	fail2ban/server/filter.py
 		2013-06-18 20:21:23 -04:00
..
3proxy.conf ENH: sample log + more specific regex 2013-06-13 10:23:14 +10:00
apache-auth.conf BF: anchor apache- filters. Close #248 2013-06-11 19:19:25 -04:00
apache-badbots.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
apache-common.conf BF: anchor apache- filters. Close #248 2013-06-11 19:19:25 -04:00
apache-nohome.conf BF: anchor apache- filters. Close #248 2013-06-11 19:19:25 -04:00
apache-noscript.conf BF: anchor apache- filters. Close #248 2013-06-11 19:19:25 -04:00
apache-overflows.conf BF: anchor apache- filters. Close #248 2013-06-11 19:19:25 -04:00
assp.conf BF: missed a space 2013-06-14 12:35:44 +10:00
asterisk.conf ENH: asterisk -- use \S instead of [^:] + prefix failregex with ^\[ 2013-06-13 23:15:48 -04:00
common.conf Merge branch 'bsd_logs' of https://github.com/grooverdan/fail2ban 2013-05-08 10:30:04 -04:00
courier-auth.conf Merge branch 'master' into 0.9 2013-05-08 13:53:38 -04:00
courier-smtp.conf Merge branch 'master' into 0.9 2013-05-08 13:53:38 -04:00
cyrus-imap.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
dovecot.conf ENH: dovecot regexs rewritten and extra failures 2013-06-13 23:52:15 +10:00
dropbear.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
exim.conf BF/ENH: Incorrect authentication data doesn't need tailier so that's optional. Also gained log entry for Unrouteable address 2013-06-14 18:12:53 +10:00
gssftpd.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
guacamole.conf ENH: Move jail `maxlines` to filter config 2013-04-18 22:11:41 +01:00
lighttpd-auth.conf ENH: join both failregex for lighttpd-auth into a single one 2012-09-30 11:30:24 -04:00
lighttpd-fastcgi.conf added two new filter files (PHP url_fopen, lighttpd fastcgi alerts), updated MANIFEST and jail.conf accordingly 2009-08-30 14:17:29 +00:00
mysqld-auth.conf ENH: for consistency (and future expansion ;)) -- rename to mysqld-auth 2013-04-09 18:03:34 -04:00
named-refused.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
pam-generic.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
php-url-fopen.conf added two new filter files (PHP url_fopen, lighttpd fastcgi alerts), updated MANIFEST and jail.conf accordingly 2009-08-30 14:17:29 +00:00
postfix.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
proftpd.conf ENH: proftpd chan accept usernames with spaces 2013-06-14 00:29:43 +10:00
pure-ftpd.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
qmail.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
recidive.conf ENH: moved jail definition for recidive into jail.conf + swapped/commented durations + non-groupping ?: 2012-01-26 23:28:44 -05:00
roundcube-auth.conf fixed failregex line for roundcube 0.9+ 2013-05-25 19:26:13 +02:00
sasl.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
sieve.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
sogo-auth.conf ENH: Slight tune ups for fresh SOGo filter + comment into the sample log file 2013-03-27 11:09:54 -04:00
sshd-ddos.conf BF: filter.d/sshd "Did not receive identification string" relates to an exploit so document this in sshd-ddos.conf but leave it out of authentication based blocks in sshd.conf 2013-04-18 04:38:03 +10:00
sshd.conf ENH: Add new regex for locked accounts for sshd 2013-05-27 22:06:49 +01:00
vsftpd.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
webmin-auth.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
wuftpd.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00
xinetd-fail.conf DOC: purge of svn tags 2013-05-03 16:03:38 +10:00