koozali
/
smeserver-fail2ban
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
96 Commits 2 Branches 27 Tags 152 KiB
Commit Graph

96 Commits

Author SHA1 Message Date
Daniel Berteaud f9e841e5c2 Remove unused name var in pam-generic jail 2013-05-02 17:53:28 +02:00
Daniel Berteaud eb22e2eb6b Enhance apache-scan filters 2013-05-02 17:22:12 +02:00
Daniel Berteaud cb73eb7a4b Insert fail2ban rule before state_chk and local_chk so established connexions can be stopped for banned host, and local hosts may also be banned 2013-05-02 16:33:54 +02:00
Daniel Berteaud 1b7f16e314 expand $bantime variable in pam jail 2013-05-02 16:29:01 +02:00
Daniel Berteaud 911db13c49 escape quotes in jail templates 2013-05-02 16:28:27 +02:00
Daniel Berteaud d33fe92435 Default to disabled for jails 2013-05-02 16:19:53 +02:00
Daniel Berteaud 5240cfb528 Add LL::NG filter and jail and default to disabled for SOGo jail 2013-05-02 16:18:48 +02:00
Daniel Berteaud 3285432916 Fix sogo failregex 2013-05-02 16:14:26 +02:00
Daniel Berteaud 97d352dda1 Variables are not passed correctly, so define actions in each jail 2013-05-02 15:59:25 +02:00
Daniel Berteaud d941c985ae fix action tempates 2013-05-02 15:41:03 +02:00
Daniel Berteaud 08b187212a Fix actions for all the services 2013-05-02 14:58:19 +02:00
Daniel Berteaud 8b8e59de61 Fix a syntax error in smeserver-fail2ban 2013-05-02 14:44:12 +02:00
Daniel Berteaud f2cfad3448 Fix apache-scan regex 2013-05-02 14:40:51 +02:00
Daniel Berteaud 9560117ab7 Fix actions template in jail.conf 2013-05-02 14:40:20 +02:00
Daniel Berteaud 3f165421d4 Add a jail for SOGo 2013-05-02 14:37:31 +02:00
Daniel Berteaud 4b7d3586d5 Define actions in the default section, and add a prop to enable mail alerts 2013-05-02 14:16:04 +02:00
Daniel Berteaud 0ba11fc416 pass bantime arg to smeserver-fail2ban action 2013-05-02 14:00:14 +02:00
Daniel Berteaud daa6416b13 Add the timestamp for unban action in the database 2013-05-02 13:41:55 +02:00
Daniel Berteaud 613b3220ef Only return after all the rules have been inserted, not between each rules (in masq templates) 2013-05-02 04:10:11 +02:00
Daniel Berteaud 77662adefd quote the port in jails to allow multiple ports with a comma 2013-05-02 04:06:04 +02:00
Daniel Berteaud 05dd76c857 Use the polling backend for the recidive jail to prevent infinite loop if we increase verbosity of the daemon 2013-05-02 03:59:56 +02:00
Daniel Berteaud 41dab44026 Convert networks addresses to CIDR 2013-05-02 03:58:34 +02:00
Daniel Berteaud 5e358594af Fix imap jail syntax 2013-05-02 03:58:12 +02:00
Daniel Berteaud 624ad98388 Fix http jail template 2013-05-02 03:41:02 +02:00
Daniel Berteaud 42bb3ba3f4 Fix masq template syntax 2013-05-02 03:24:35 +02:00
Daniel Berteaud a2c6621151 Increase default maxretry to 5 2013-05-02 03:10:17 +02:00
Daniel Berteaud 07c9504b39 Add a pam-generic jail 2013-05-02 03:09:36 +02:00
Daniel Berteaud 52bf6b871d add a jail for apache 2013-05-02 03:02:54 +02:00
Daniel Berteaud 4df9a2848c Use multiport iptables module to support several ports in one rule 2013-05-02 02:13:52 +02:00
Daniel Berteaud d373fabde8 Add a jail for dovecot 2013-05-02 02:09:18 +02:00
Daniel Berteaud 390c697875 Only enable SSH jail if ssh service is enabled 2013-05-02 01:54:11 +02:00
Daniel Berteaud 6eb50b8c84 Enable the recidive jail (monitor fail2ban's own logs to ban for a longer period hosts which gets banned several time) 2013-05-02 01:51:49 +02:00
Daniel Berteaud 3efe85e03e whitelist the whole 127.0.0.0/8 mask 2013-05-02 01:44:54 +02:00
Daniel Berteaud 1848a6a869 Add IgnoreIP prop to specify a local list of IP to prevent from being banned 2013-05-02 01:44:22 +02:00
Daniel Berteaud f81ad40949 rename ban script to smeserver-fail2ban 2013-05-02 01:42:16 +02:00
Daniel Berteaud 242cdc05a3 Add a cleanup script to purge rules in case fail2ban lost them 2013-05-02 01:40:35 +02:00
Daniel Berteaud c5685730a7 Increase default ban time to 30 min 2013-05-02 01:22:37 +02:00
Daniel Berteaud fa462938fb expand fail2ban templates during bootstrap-console-save event 2013-05-02 01:20:48 +02:00
Daniel Berteaud 39337adf12 Disable DNS reverse lookups 2013-05-02 01:19:12 +02:00
Daniel Berteaud bc6518ba96 Add proto and port support in masq templates 2013-05-02 01:15:52 +02:00
Daniel Berteaud a99711dd02 Send daemon logs to a dedicated file and add logrotate templates 2013-04-29 12:15:26 +02:00
Daniel Berteaud d1369db297 remove daemontools support, fail2ban doesn't play well with it because the daemon started standalone won't do anything before the client parse the config and send the param to the server 2013-04-29 11:51:28 +02:00
Daniel Berteaud b88a9b5f1a Fix sections space 2013-04-28 22:10:12 +02:00
Daniel Berteaud d73e7df337 Reverse bad logic in FilterLocalNetworks 2013-04-28 22:08:21 +02:00
Daniel Berteaud df3190298d various fixes in jail.conf templates 2013-04-28 22:06:33 +02:00
Daniel Berteaud 0b90b27eb8 First commit 2013-04-28 21:43:50 +02:00