fail2ban-0.9.6-86.1.noarch.rpm


Advertisement

Description

fail2ban - Bans IP addresses that make too many authentication failures

Distribution: openSUSE 13.2
Repository: openSUSE Security all
Package name: fail2ban
Package version: 0.9.6
Package release: 86.1
Package architecture: noarch
Package type: rpm
Installed size: 914.39 KB
Download size: 286.97 KB
Official Mirror: ftp.gwdg.de
Fail2ban scans log files like /var/log/messages and bans IP addresses that makes too many password failures. It updates firewall rules to reject the IP address, can send e-mails, or set host.deny entries. These rules can be defined by the user. Fail2Ban can read multiple log files such as sshd or Apache web server ones.

Alternatives

Provides

  • config(fail2ban) = 0.9.6-86.1
  • fail2ban = 0.9.6-86.1

    Download

    Install Howto

    1. Add the openSUSE Security repository:
      # zypper addrepo http://ftp.gwdg.de/pub/opensuse/repositories/security/openSUSE_13.2/ opensuse-security
    2. Install fail2ban rpm package:
      # zypper install fail2ban

    Files

    • /etc/fail2ban/fail2ban.conf
    • /etc/fail2ban/jail.conf
    • /etc/fail2ban/jail.local
    • /etc/fail2ban/paths-common.conf
    • /etc/fail2ban/paths-opensuse.conf
    • /etc/fail2ban/action.d/apf.conf
    • /etc/fail2ban/action.d/badips.conf
    • /etc/fail2ban/action.d/badips.py
    • /etc/fail2ban/action.d/blocklist_de.conf
    • /etc/fail2ban/action.d/bsd-ipfw.conf
    • /etc/fail2ban/action.d/cloudflare.conf
    • /etc/fail2ban/action.d/complain.conf
    • /etc/fail2ban/action.d/dshield.conf
    • /etc/fail2ban/action.d/dummy.conf
    • /etc/fail2ban/action.d/firewallcmd-allports.conf
    • /etc/fail2ban/action.d/firewallcmd-ipset.conf
    • /etc/fail2ban/action.d/firewallcmd-multiport.conf
    • /etc/fail2ban/action.d/firewallcmd-new.conf
    • /etc/fail2ban/action.d/firewallcmd-rich-logging.conf
    • /etc/fail2ban/action.d/firewallcmd-rich-rules.conf
    • /etc/fail2ban/action.d/hostsdeny.conf
    • /etc/fail2ban/action.d/ipfilter.conf
    • /etc/fail2ban/action.d/ipfw.conf
    • /etc/fail2ban/action.d/iptables-allports.conf
    • /etc/fail2ban/action.d/iptables-common.conf
    • /etc/fail2ban/action.d/iptables-ipset-proto4.conf
    • /etc/fail2ban/action.d/iptables-ipset-proto6-allports.conf
    • /etc/fail2ban/action.d/iptables-ipset-proto6.conf
    • /etc/fail2ban/action.d/iptables-multiport-log.conf
    • /etc/fail2ban/action.d/iptables-multiport.conf
    • /etc/fail2ban/action.d/iptables-new.conf
    • /etc/fail2ban/action.d/iptables-xt_recent-echo.conf
    • /etc/fail2ban/action.d/iptables.conf
    • /etc/fail2ban/action.d/mail-buffered.conf
    • /etc/fail2ban/action.d/mail-whois-common.conf
    • /etc/fail2ban/action.d/mail-whois-lines.conf
    • /etc/fail2ban/action.d/mail-whois.conf
    • /etc/fail2ban/action.d/mail.conf
    • /etc/fail2ban/action.d/mynetwatchman.conf
    • /etc/fail2ban/action.d/nftables-allports.conf
    • /etc/fail2ban/action.d/nftables-common.conf
    • /etc/fail2ban/action.d/nftables-multiport.conf
    • /etc/fail2ban/action.d/npf.conf
    • /etc/fail2ban/action.d/nsupdate.conf
    • /etc/fail2ban/action.d/osx-afctl.conf
    • /etc/fail2ban/action.d/osx-ipfw.conf
    • /etc/fail2ban/action.d/pf.conf
    • /etc/fail2ban/action.d/route.conf
    • /etc/fail2ban/action.d/sendmail-buffered.conf
    • /etc/fail2ban/action.d/sendmail-common.conf
    • /etc/fail2ban/action.d/sendmail-geoip-lines.conf
    • /etc/fail2ban/action.d/sendmail-whois-ipjailmatches.conf
    • /etc/fail2ban/action.d/sendmail-whois-ipmatches.conf
    • /etc/fail2ban/action.d/sendmail-whois-lines.conf
    • /etc/fail2ban/action.d/sendmail-whois-matches.conf
    • /etc/fail2ban/action.d/sendmail-whois.conf
    • /etc/fail2ban/action.d/sendmail.conf
    • /etc/fail2ban/action.d/shorewall-ipset-proto6.conf
    • /etc/fail2ban/action.d/shorewall.conf
    • /etc/fail2ban/action.d/smtp.py
    • /etc/fail2ban/action.d/symbiosis-blacklist-allports.conf
    • /etc/fail2ban/action.d/ufw.conf
    • /etc/fail2ban/action.d/xarf-login-attack.conf
    • /etc/fail2ban/fail2ban.d/
    • /etc/fail2ban/filter.d/3proxy.conf
    • /etc/fail2ban/filter.d/apache-auth.conf
    • /etc/fail2ban/filter.d/apache-badbots.conf
    • /etc/fail2ban/filter.d/apache-botsearch.conf
    • /etc/fail2ban/filter.d/apache-common.conf
    • /etc/fail2ban/filter.d/apache-fakegooglebot.conf
    • /etc/fail2ban/filter.d/apache-modsecurity.conf
    • /etc/fail2ban/filter.d/apache-nohome.conf
    • /etc/fail2ban/filter.d/apache-noscript.conf
    • /etc/fail2ban/filter.d/apache-overflows.conf
    • /etc/fail2ban/filter.d/apache-pass.conf
    • /etc/fail2ban/filter.d/apache-shellshock.conf
    • /etc/fail2ban/filter.d/assp.conf
    • /etc/fail2ban/filter.d/asterisk.conf
    • /etc/fail2ban/filter.d/botsearch-common.conf
    • /etc/fail2ban/filter.d/common.conf
    • /etc/fail2ban/filter.d/counter-strike.conf
    • /etc/fail2ban/filter.d/courier-auth.conf
    • /etc/fail2ban/filter.d/courier-smtp.conf
    • /etc/fail2ban/filter.d/cyrus-imap.conf
    • /etc/fail2ban/filter.d/directadmin.conf
    • /etc/fail2ban/filter.d/dovecot.conf
    • /etc/fail2ban/filter.d/dropbear.conf
    • /etc/fail2ban/filter.d/drupal-auth.conf
    • /etc/fail2ban/filter.d/ejabberd-auth.conf
    • /etc/fail2ban/filter.d/exim-common.conf
    • /etc/fail2ban/filter.d/exim-spam.conf
    • /etc/fail2ban/filter.d/exim.conf
    • /etc/fail2ban/filter.d/freeswitch.conf
    • /etc/fail2ban/filter.d/froxlor-auth.conf
    • /etc/fail2ban/filter.d/groupoffice.conf
    • /etc/fail2ban/filter.d/gssftpd.conf
    • /etc/fail2ban/filter.d/guacamole.conf
    • /etc/fail2ban/filter.d/haproxy-http-auth.conf
    • /etc/fail2ban/filter.d/horde.conf
    • /etc/fail2ban/filter.d/kerio.conf
    • /etc/fail2ban/filter.d/lighttpd-auth.conf
    • /etc/fail2ban/filter.d/mongodb-auth.conf
    • /etc/fail2ban/filter.d/monit.conf
    • /etc/fail2ban/filter.d/murmur.conf
    • /etc/fail2ban/filter.d/mysqld-auth.conf
    • /etc/fail2ban/filter.d/nagios.conf
    • /etc/fail2ban/filter.d/named-refused.conf
    • /etc/fail2ban/filter.d/nginx-botsearch.conf
    • /etc/fail2ban/filter.d/nginx-http-auth.conf
    • /etc/fail2ban/filter.d/nginx-limit-req.conf
    • /etc/fail2ban/filter.d/nsd.conf
    • /etc/fail2ban/filter.d/openhab.conf
    • /etc/fail2ban/filter.d/openwebmail.conf
    • /etc/fail2ban/filter.d/oracleims.conf
    • /etc/fail2ban/filter.d/pam-generic.conf
    • /etc/fail2ban/filter.d/perdition.conf
    • /etc/fail2ban/filter.d/php-url-fopen.conf
    • /etc/fail2ban/filter.d/portsentry.conf
    • /etc/fail2ban/filter.d/postfix-rbl.conf
    • /etc/fail2ban/filter.d/postfix-sasl.conf
    • /etc/fail2ban/filter.d/postfix.conf
    • /etc/fail2ban/filter.d/proftpd.conf
    • /etc/fail2ban/filter.d/pure-ftpd.conf
    • /etc/fail2ban/filter.d/qmail.conf
    • /etc/fail2ban/filter.d/recidive.conf
    • /etc/fail2ban/filter.d/roundcube-auth.conf
    • /etc/fail2ban/filter.d/screensharingd.conf
    • /etc/fail2ban/filter.d/selinux-common.conf
    • /etc/fail2ban/filter.d/selinux-ssh.conf
    • /etc/fail2ban/filter.d/sendmail-auth.conf
    • /etc/fail2ban/filter.d/sendmail-reject.conf
    • /etc/fail2ban/filter.d/sieve.conf
    • /etc/fail2ban/filter.d/slapd.conf
    • /etc/fail2ban/filter.d/sogo-auth.conf
    • /etc/fail2ban/filter.d/solid-pop3d.conf
    • /etc/fail2ban/filter.d/squid.conf
    • /etc/fail2ban/filter.d/squirrelmail.conf
    • /etc/fail2ban/filter.d/sshd-ddos.conf
    • /etc/fail2ban/filter.d/sshd.conf
    • /etc/fail2ban/filter.d/stunnel.conf
    • /etc/fail2ban/filter.d/suhosin.conf
    • /etc/fail2ban/filter.d/tine20.conf
    • /etc/fail2ban/filter.d/uwimap-auth.conf
    • /etc/fail2ban/filter.d/vsftpd.conf
    • /etc/fail2ban/filter.d/webmin-auth.conf
    • /etc/fail2ban/filter.d/wuftpd.conf
    • /etc/fail2ban/filter.d/xinetd-fail.conf
    • /etc/fail2ban/filter.d/ignorecommands/apache-fakegooglebot
    • /etc/fail2ban/jail.d/
    • /etc/logrotate.d/fail2ban
    • /run/fail2ban/
    • /usr/bin/fail2ban-client
    • /usr/bin/fail2ban-python
    • /usr/bin/fail2ban-regex
    • /usr/bin/fail2ban-server
    • /usr/lib/python2.7/site-packages/fail2ban-0.9.6-py2.7.egg-info
    • /usr/lib/python2.7/site-packages/fail2ban/__init__.py
    • /usr/lib/python2.7/site-packages/fail2ban/__init__.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/exceptions.py
    • /usr/lib/python2.7/site-packages/fail2ban/exceptions.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/helpers.py
    • /usr/lib/python2.7/site-packages/fail2ban/helpers.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/protocol.py
    • /usr/lib/python2.7/site-packages/fail2ban/protocol.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/setup.py
    • /usr/lib/python2.7/site-packages/fail2ban/setup.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/version.py
    • /usr/lib/python2.7/site-packages/fail2ban/version.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/__init__.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/__init__.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/actionreader.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/actionreader.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/beautifier.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/beautifier.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/configparserinc.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/configparserinc.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/configreader.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/configreader.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/configurator.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/configurator.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/csocket.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/csocket.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/fail2banreader.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/fail2banreader.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/fail2banregex.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/fail2banregex.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/filterreader.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/filterreader.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/jailreader.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/jailreader.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/client/jailsreader.py
    • /usr/lib/python2.7/site-packages/fail2ban/client/jailsreader.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/__init__.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/__init__.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/action.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/action.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/actions.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/actions.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/asyncserver.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/asyncserver.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/banmanager.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/banmanager.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/database.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/database.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/datedetector.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/datedetector.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/datetemplate.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/datetemplate.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/faildata.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/faildata.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/failmanager.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/failmanager.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/failregex.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/failregex.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/filter.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/filter.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/filtergamin.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/filtergamin.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/filterpoll.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/filterpoll.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/filterpyinotify.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/filterpyinotify.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/filtersystemd.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/filtersystemd.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/jail.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/jail.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/jails.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/jails.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/jailthread.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/jailthread.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/mytime.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/mytime.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/server.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/server.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/strptime.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/strptime.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/ticket.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/ticket.pyc
    • /usr/lib/python2.7/site-packages/fail2ban/server/transmitter.py
    • /usr/lib/python2.7/site-packages/fail2ban/server/transmitter.pyc
    • /usr/lib/systemd/system/fail2ban.service
    • /usr/lib/tmpfiles.d/fail2ban.conf
    • /usr/sbin/rcfail2ban
    • /usr/share/doc/packages/fail2ban/COPYING
    • /usr/share/doc/packages/fail2ban/ChangeLog
    • /usr/share/doc/packages/fail2ban/README.md
    • /usr/share/doc/packages/fail2ban/TODO
    • /usr/share/doc/packages/fail2ban/requirements.txt
    • /usr/share/doc/packages/fail2ban/run-rootless.txt
    • /usr/share/man/man1/fail2ban-client.1.gz
    • /usr/share/man/man1/fail2ban-regex.1.gz
    • /usr/share/man/man1/fail2ban-server.1.gz
    • /usr/share/man/man1/fail2ban-testcases.1.gz
    • /usr/share/man/man5/jail.conf.5.gz
    • /var/adm/fillup-templates/sysconfig.fail2ban
    • /var/lib/fail2ban/

    Changelog

    2017-01-26 - chris@computersalat.de - Update to 0.9.6 (2016/12/10) [#]## Fixes * Misleading add resp. enable of (already available) jail in database, that induced a subsequent error: last position of log file will be never retrieved (gh-795) * Fixed a distribution related bug within testReadStockJailConfForceEnabled (e.g. test-cases faults on Fedora, see gh-1353) * Fixed pythonic filters and test scripts (running via wrong python version, uses "fail2ban-python" now); * Fixed test case "testSetupInstallRoot" for not default python version (also using direct call, out of virtualenv); * Fixed ambiguous wrong recognized date pattern resp. its optional parts (see gh-1512); * FIPS compliant, use sha1 instead of md5 if it not allowed (see gh-1540) * Monit config: scripting is not supported in path (gh-1556) * `filter.d/apache-modsecurity.conf` - Fixed for newer version (one space, gh-1626), optimized: non-greedy catch-all replaced for safer match, unneeded catch-all anchoring removed, non-capturing * `filter.d/asterisk.conf` - Fixed to match different asterisk log prefix (source file: method:) * `filter.d/dovecot.conf` - Fixed failregex ignores failures through some not relevant info (gh-1623) * `filter.d/ignorecommands/apache-fakegooglebot` - Fixed error within apache-fakegooglebot, that will be called with wrong python version (gh-1506) * `filter.d/assp.conf` - Extended failregex and test cases to handle ASSP V1 and V2 (gh-1494) * `filter.d/postfix-sasl.conf` - Allow for having no trailing space after 'failed:' (gh-1497) * `filter.d/vsftpd.conf` - Optional reason part in message after FAIL LOGIN (gh-1543) * `filter.d/sendmail-reject.conf` - removed mandatory double space (if dns-host available, gh-1579) * filter.d/sshd.conf - recognized "Failed publickey for" (gh-1477); - optimized failregex to match all of "Failed any-method for ... from <HOST>" (gh-1479) - eliminated possible complex injections (on user-name resp. auth-info, see gh-1479) - optional port part after host (see gh-1533, gh-1581) [#]## New Features * New Actions: - `action.d/npf.conf` for NPF, the latest packet filter for NetBSD * New Filters: - `filter.d/mongodb-auth.conf` for MongoDB (document-oriented NoSQL database engine) (gh-1586, gh-1606 and gh-1607) [#]## Enhancements * DateTemplate regexp extended with the word-end boundary, additionally to word-start boundary * Introduces new command "fail2ban-python", as automatically created symlink to python executable, where fail2ban currently installed (resp. its modules are located): - allows to use the same version, fail2ban currently running, e.g. in external scripts just via replace python with fail2ban-python: ```diff - #!/usr/bin/env python +#!/usr/bin/env fail2ban-python ``` - always the same pickle protocol - the same (and also guaranteed available) fail2ban modules - simplified stand-alone install, resp. stand-alone installation possibility via setup (like gh-1487) is getting closer * Several test cases rewritten using new methods assertIn, assertNotIn * New forward compatibility method assertRaisesRegexp (normally python >= 2.7). Methods assertIn, assertNotIn, assertRaisesRegexp, assertLogged, assertNotLogged are test covered now * Jail configuration extended with new syntax to pass options to the backend (see gh-1408), examples: - `backend = systemd[journalpath=/run/log/journal/machine-1]` - `backend = systemd[journalfiles="/run/log/journal/machine-1/system.journal, /run/log/journal/machine-1/user.journal"]` - `backend = systemd[journalflags=2]` - rebase fail2ban-opensuse-locations.patch, fail2ban-opensuse-service.patch

    Advertisement
    Advertisement