fail2ban-0.10.3.1-102.1.noarch.rpm


Advertisement

Description

fail2ban - Bans IP addresses that make too many authentication failures

Property Value
Distribution openSUSE Tumbleweed
Repository openSUSE Security all
Package name fail2ban
Package version 0.10.3.1
Package release 102.1
Package architecture noarch
Package type rpm
Installed size 1.26 MB
Download size 416.04 KB
Official Mirror ftp.gwdg.de
Fail2ban scans log files like /var/log/messages and bans IP
addresses that makes too many password failures. It updates firewall rules to
reject the IP address, can send e-mails, or set host.deny entries.  These rules
can be defined by the user. Fail2Ban can read multiple log files such as sshd
or Apache web server ones.

Alternatives

Package Version Architecture Repository
fail2ban-0.10.2-1.1.noarch.rpm 0.10.2 noarch openSUSE Oss
fail2ban - - -

Requires

Name Value
/usr/bin/env -
/usr/bin/python -
cron -
ed -
iptables -
logrotate -
python >= 2.6
python(abi) = 2.7
python-gamin >= 0.0.21
python-pyinotify >= 0.8.3
python-systemd -
systemd -
systemd > 204
whois -

Provides

Name Value
config(fail2ban) = 0.10.3.1-102.1
fail2ban = 0.10.3.1-102.1

Download

Type URL
Binary Package fail2ban-0.10.3.1-102.1.noarch.rpm
Source Package fail2ban-0.10.3.1-102.1.src.rpm

Install Howto

  1. Add the openSUSE Security repository:
    # zypper addrepo http://ftp.gwdg.de/pub/opensuse/repositories/security/openSUSE_Tumbleweed/ opensuse-security
  2. Install fail2ban rpm package:
    # zypper install fail2ban

Files

Path
/etc/fail2ban/fail2ban.conf
/etc/fail2ban/jail.conf
/etc/fail2ban/jail.local
/etc/fail2ban/paths-common.conf
/etc/fail2ban/paths-opensuse.conf
/etc/fail2ban/action.d/abuseipdb.conf
/etc/fail2ban/action.d/apf.conf
/etc/fail2ban/action.d/badips.conf
/etc/fail2ban/action.d/badips.py
/etc/fail2ban/action.d/blocklist_de.conf
/etc/fail2ban/action.d/bsd-ipfw.conf
/etc/fail2ban/action.d/cloudflare.conf
/etc/fail2ban/action.d/complain.conf
/etc/fail2ban/action.d/dshield.conf
/etc/fail2ban/action.d/dummy.conf
/etc/fail2ban/action.d/firewallcmd-allports.conf
/etc/fail2ban/action.d/firewallcmd-common.conf
/etc/fail2ban/action.d/firewallcmd-ipset.conf
/etc/fail2ban/action.d/firewallcmd-multiport.conf
/etc/fail2ban/action.d/firewallcmd-new.conf
/etc/fail2ban/action.d/firewallcmd-rich-logging.conf
/etc/fail2ban/action.d/firewallcmd-rich-rules.conf
/etc/fail2ban/action.d/helpers-common.conf
/etc/fail2ban/action.d/hostsdeny.conf
/etc/fail2ban/action.d/ipfilter.conf
/etc/fail2ban/action.d/ipfw.conf
/etc/fail2ban/action.d/iptables-allports.conf
/etc/fail2ban/action.d/iptables-common.conf
/etc/fail2ban/action.d/iptables-ipset-proto4.conf
/etc/fail2ban/action.d/iptables-ipset-proto6-allports.conf
/etc/fail2ban/action.d/iptables-ipset-proto6.conf
/etc/fail2ban/action.d/iptables-multiport-log.conf
/etc/fail2ban/action.d/iptables-multiport.conf
/etc/fail2ban/action.d/iptables-new.conf
/etc/fail2ban/action.d/iptables-xt_recent-echo.conf
/etc/fail2ban/action.d/iptables.conf
/etc/fail2ban/action.d/mail-buffered.conf
/etc/fail2ban/action.d/mail-whois-common.conf
/etc/fail2ban/action.d/mail-whois-lines.conf
/etc/fail2ban/action.d/mail-whois.conf
/etc/fail2ban/action.d/mail.conf
/etc/fail2ban/action.d/mynetwatchman.conf
/etc/fail2ban/action.d/netscaler.conf
/etc/fail2ban/action.d/nftables-allports.conf
/etc/fail2ban/action.d/nftables-common.conf
/etc/fail2ban/action.d/nftables-multiport.conf
/etc/fail2ban/action.d/nginx-block-map.conf
/etc/fail2ban/action.d/npf.conf
/etc/fail2ban/action.d/nsupdate.conf
/etc/fail2ban/action.d/osx-afctl.conf
/etc/fail2ban/action.d/osx-ipfw.conf
/etc/fail2ban/action.d/pf.conf
/etc/fail2ban/action.d/route.conf
/etc/fail2ban/action.d/sendmail-buffered.conf
/etc/fail2ban/action.d/sendmail-common.conf
/etc/fail2ban/action.d/sendmail-geoip-lines.conf
/etc/fail2ban/action.d/sendmail-whois-ipjailmatches.conf
/etc/fail2ban/action.d/sendmail-whois-ipmatches.conf
/etc/fail2ban/action.d/sendmail-whois-lines.conf
/etc/fail2ban/action.d/sendmail-whois-matches.conf
/etc/fail2ban/action.d/sendmail-whois.conf
/etc/fail2ban/action.d/sendmail.conf
/etc/fail2ban/action.d/shorewall-ipset-proto6.conf
/etc/fail2ban/action.d/shorewall.conf
/etc/fail2ban/action.d/smtp.py
/etc/fail2ban/action.d/symbiosis-blacklist-allports.conf
/etc/fail2ban/action.d/ufw.conf
/etc/fail2ban/action.d/xarf-login-attack.conf
/etc/fail2ban/fail2ban.d/
/etc/fail2ban/filter.d/3proxy.conf
/etc/fail2ban/filter.d/apache-auth.conf
/etc/fail2ban/filter.d/apache-badbots.conf
/etc/fail2ban/filter.d/apache-botsearch.conf
/etc/fail2ban/filter.d/apache-common.conf
/etc/fail2ban/filter.d/apache-fakegooglebot.conf
/etc/fail2ban/filter.d/apache-modsecurity.conf
/etc/fail2ban/filter.d/apache-nohome.conf
/etc/fail2ban/filter.d/apache-noscript.conf
/etc/fail2ban/filter.d/apache-overflows.conf
/etc/fail2ban/filter.d/apache-pass.conf
/etc/fail2ban/filter.d/apache-shellshock.conf
/etc/fail2ban/filter.d/assp.conf
/etc/fail2ban/filter.d/asterisk.conf
/etc/fail2ban/filter.d/botsearch-common.conf
/etc/fail2ban/filter.d/common.conf
/etc/fail2ban/filter.d/counter-strike.conf
/etc/fail2ban/filter.d/courier-auth.conf
/etc/fail2ban/filter.d/courier-smtp.conf
/etc/fail2ban/filter.d/cyrus-imap.conf
/etc/fail2ban/filter.d/directadmin.conf
/etc/fail2ban/filter.d/domino-smtp.conf
/etc/fail2ban/filter.d/dovecot.conf
/etc/fail2ban/filter.d/dropbear.conf
/etc/fail2ban/filter.d/drupal-auth.conf
/etc/fail2ban/filter.d/ejabberd-auth.conf
/etc/fail2ban/filter.d/exim-common.conf
/etc/fail2ban/filter.d/exim-spam.conf
/etc/fail2ban/filter.d/exim.conf
/etc/fail2ban/filter.d/freeswitch.conf
/etc/fail2ban/filter.d/froxlor-auth.conf
/etc/fail2ban/filter.d/groupoffice.conf
/etc/fail2ban/filter.d/gssftpd.conf
/etc/fail2ban/filter.d/guacamole.conf
/etc/fail2ban/filter.d/haproxy-http-auth.conf
/etc/fail2ban/filter.d/horde.conf
/etc/fail2ban/filter.d/kerio.conf
/etc/fail2ban/filter.d/lighttpd-auth.conf
/etc/fail2ban/filter.d/mongodb-auth.conf
/etc/fail2ban/filter.d/monit.conf
/etc/fail2ban/filter.d/murmur.conf
/etc/fail2ban/filter.d/mysqld-auth.conf
/etc/fail2ban/filter.d/nagios.conf
/etc/fail2ban/filter.d/named-refused.conf
/etc/fail2ban/filter.d/nginx-botsearch.conf
/etc/fail2ban/filter.d/nginx-http-auth.conf
/etc/fail2ban/filter.d/nginx-limit-req.conf
/etc/fail2ban/filter.d/nsd.conf
/etc/fail2ban/filter.d/openhab.conf
/etc/fail2ban/filter.d/openwebmail.conf
/etc/fail2ban/filter.d/oracleims.conf
/etc/fail2ban/filter.d/pam-generic.conf
/etc/fail2ban/filter.d/perdition.conf
/etc/fail2ban/filter.d/php-url-fopen.conf
/etc/fail2ban/filter.d/phpmyadmin-syslog.conf
/etc/fail2ban/filter.d/portsentry.conf
/etc/fail2ban/filter.d/postfix.conf
/etc/fail2ban/filter.d/proftpd.conf
/etc/fail2ban/filter.d/pure-ftpd.conf
/etc/fail2ban/filter.d/qmail.conf
/etc/fail2ban/filter.d/recidive.conf
/etc/fail2ban/filter.d/roundcube-auth.conf
/etc/fail2ban/filter.d/screensharingd.conf
/etc/fail2ban/filter.d/selinux-common.conf
/etc/fail2ban/filter.d/selinux-ssh.conf
/etc/fail2ban/filter.d/sendmail-auth.conf
/etc/fail2ban/filter.d/sendmail-reject.conf
/etc/fail2ban/filter.d/sieve.conf
/etc/fail2ban/filter.d/slapd.conf
/etc/fail2ban/filter.d/sogo-auth.conf
/etc/fail2ban/filter.d/solid-pop3d.conf
/etc/fail2ban/filter.d/squid.conf
/etc/fail2ban/filter.d/squirrelmail.conf
/etc/fail2ban/filter.d/sshd.conf
/etc/fail2ban/filter.d/stunnel.conf
/etc/fail2ban/filter.d/suhosin.conf
/etc/fail2ban/filter.d/tine20.conf
/etc/fail2ban/filter.d/uwimap-auth.conf
/etc/fail2ban/filter.d/vsftpd.conf
/etc/fail2ban/filter.d/webmin-auth.conf
/etc/fail2ban/filter.d/wuftpd.conf
/etc/fail2ban/filter.d/xinetd-fail.conf
/etc/fail2ban/filter.d/zoneminder.conf
/etc/fail2ban/filter.d/ignorecommands/apache-fakegooglebot
/etc/fail2ban/jail.d/
/etc/logrotate.d/fail2ban
/run/fail2ban/
/usr/bin/fail2ban-client
/usr/bin/fail2ban-python
/usr/bin/fail2ban-regex
/usr/bin/fail2ban-server
/usr/lib/python2.7/site-packages/fail2ban-0.10.3.fix1-py2.7.egg-info
/usr/lib/python2.7/site-packages/fail2ban/__init__.py
/usr/lib/python2.7/site-packages/fail2ban/__init__.pyc
/usr/lib/python2.7/site-packages/fail2ban/exceptions.py
/usr/lib/python2.7/site-packages/fail2ban/exceptions.pyc
/usr/lib/python2.7/site-packages/fail2ban/helpers.py
/usr/lib/python2.7/site-packages/fail2ban/helpers.pyc
/usr/lib/python2.7/site-packages/fail2ban/protocol.py
/usr/lib/python2.7/site-packages/fail2ban/protocol.pyc
/usr/lib/python2.7/site-packages/fail2ban/setup.py
/usr/lib/python2.7/site-packages/fail2ban/setup.pyc
/usr/lib/python2.7/site-packages/fail2ban/version.py
/usr/lib/python2.7/site-packages/fail2ban/version.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/__init__.py
/usr/lib/python2.7/site-packages/fail2ban/client/__init__.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/actionreader.py
/usr/lib/python2.7/site-packages/fail2ban/client/actionreader.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/beautifier.py
/usr/lib/python2.7/site-packages/fail2ban/client/beautifier.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/configparserinc.py
/usr/lib/python2.7/site-packages/fail2ban/client/configparserinc.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/configreader.py
/usr/lib/python2.7/site-packages/fail2ban/client/configreader.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/configurator.py
/usr/lib/python2.7/site-packages/fail2ban/client/configurator.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/csocket.py
/usr/lib/python2.7/site-packages/fail2ban/client/csocket.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/fail2banclient.py
/usr/lib/python2.7/site-packages/fail2ban/client/fail2banclient.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/fail2bancmdline.py
/usr/lib/python2.7/site-packages/fail2ban/client/fail2bancmdline.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/fail2banreader.py
/usr/lib/python2.7/site-packages/fail2ban/client/fail2banreader.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/fail2banregex.py
/usr/lib/python2.7/site-packages/fail2ban/client/fail2banregex.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/fail2banserver.py
/usr/lib/python2.7/site-packages/fail2ban/client/fail2banserver.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/filterreader.py
/usr/lib/python2.7/site-packages/fail2ban/client/filterreader.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/jailreader.py
/usr/lib/python2.7/site-packages/fail2ban/client/jailreader.pyc
/usr/lib/python2.7/site-packages/fail2ban/client/jailsreader.py
/usr/lib/python2.7/site-packages/fail2ban/client/jailsreader.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/__init__.py
/usr/lib/python2.7/site-packages/fail2ban/server/__init__.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/action.py
/usr/lib/python2.7/site-packages/fail2ban/server/action.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/actions.py
/usr/lib/python2.7/site-packages/fail2ban/server/actions.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/asyncserver.py
/usr/lib/python2.7/site-packages/fail2ban/server/asyncserver.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/banmanager.py
/usr/lib/python2.7/site-packages/fail2ban/server/banmanager.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/database.py
/usr/lib/python2.7/site-packages/fail2ban/server/database.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/datedetector.py
/usr/lib/python2.7/site-packages/fail2ban/server/datedetector.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/datetemplate.py
/usr/lib/python2.7/site-packages/fail2ban/server/datetemplate.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/failmanager.py
/usr/lib/python2.7/site-packages/fail2ban/server/failmanager.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/failregex.py
/usr/lib/python2.7/site-packages/fail2ban/server/failregex.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/filter.py
/usr/lib/python2.7/site-packages/fail2ban/server/filter.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/filtergamin.py
/usr/lib/python2.7/site-packages/fail2ban/server/filtergamin.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/filterpoll.py
/usr/lib/python2.7/site-packages/fail2ban/server/filterpoll.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/filterpyinotify.py
/usr/lib/python2.7/site-packages/fail2ban/server/filterpyinotify.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/filtersystemd.py
/usr/lib/python2.7/site-packages/fail2ban/server/filtersystemd.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/ipdns.py
/usr/lib/python2.7/site-packages/fail2ban/server/ipdns.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/jail.py
/usr/lib/python2.7/site-packages/fail2ban/server/jail.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/jails.py
/usr/lib/python2.7/site-packages/fail2ban/server/jails.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/jailthread.py
/usr/lib/python2.7/site-packages/fail2ban/server/jailthread.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/mytime.py
/usr/lib/python2.7/site-packages/fail2ban/server/mytime.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/server.py
/usr/lib/python2.7/site-packages/fail2ban/server/server.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/strptime.py
/usr/lib/python2.7/site-packages/fail2ban/server/strptime.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/ticket.py
/usr/lib/python2.7/site-packages/fail2ban/server/ticket.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/transmitter.py
/usr/lib/python2.7/site-packages/fail2ban/server/transmitter.pyc
/usr/lib/python2.7/site-packages/fail2ban/server/utils.py
/usr/lib/python2.7/site-packages/fail2ban/server/utils.pyc
/usr/lib/systemd/system/fail2ban.service
/usr/lib/tmpfiles.d/fail2ban.conf
/usr/sbin/rcfail2ban
/usr/share/doc/packages/fail2ban/COPYING
/usr/share/doc/packages/fail2ban/ChangeLog
/usr/share/doc/packages/fail2ban/README.md
/usr/share/doc/packages/fail2ban/TODO
/usr/share/doc/packages/fail2ban/requirements.txt
/usr/share/doc/packages/fail2ban/run-rootless.txt
/usr/share/fillup-templates/sysconfig.fail2ban
/usr/share/man/man1/fail2ban-client.1.gz
/usr/share/man/man1/fail2ban-python.1.gz
/usr/share/man/man1/fail2ban-regex.1.gz
/usr/share/man/man1/fail2ban-server.1.gz
/usr/share/man/man1/fail2ban-testcases.1.gz
/usr/share/man/man5/jail.conf.5.gz
/var/lib/fail2ban/

Changelog

2018-04-21 - jweberhofer@weberhofer.at
- Updated to version 0.10.3.1. Changelog:
https://github.com/fail2ban/fail2ban/blob/0.10.3.1/ChangeLog
* fixed JSON serialization for the set-object within dump into database (gh-2103).
- Updated to version 0.10.3. Changelog:
https://github.com/fail2ban/fail2ban/blob/0.10.3/ChangeLog
- Fixes
* `filter.d/asterisk.conf`: fixed failregex prefix by log over remote syslog server (gh-2060);
* `filter.d/exim.conf`: failregex extended - SMTP call dropped: too many syntax or protocol errors (gh-2048);
* `filter.d/recidive.conf`: fixed if logging into systemd-journal (SYSLOG) with daemon name in prefix, gh-2069;
* `filter.d/sendmail-auth.conf`, `filter.d/sendmail-reject.conf` :
- fixed failregex, sendmail uses prefix 'IPv6:' logging of IPv6 addresses (gh-2064);
* `filter.d/sshd.conf`:
- failregex got an optional space in order to match new log-format (see gh-2061);
- fixed ddos-mode regex to match refactored message (some versions can contain port now, see gh-2062);
- fixed root login refused regex (optional port before preauth, gh-2080);
- avoid banning of legitimate users when pam_unix used in combination with other password method, so
bypass pam_unix failures if accepted available for this user gh-2070;
- amend to gh-1263 with better handling of multiple attempts (failures for different user-names recognized immediatelly);
- mode `ddos` (and `aggressive`) extended to catch `Connection closed by ... [preauth]`, so in DDOS mode
it counts failure on closing connection within preauth-stage (gh-2085);
* `action.d/abuseipdb.conf`: fixed curl cypher errors and comment quote-issue (gh-2044, gh-2101);
* `action.d/badips.py`: implicit convert IPAddr to str, solves an issue "expected string, IPAddr found" (gh-2059);
* `action.d/hostsdeny.conf`: fixed IPv6 syntax (enclosed in square brackets, gh-2066);
* (Free)BSD ipfw actionban fixed to allow same rule added several times (gh-2054);
- New Features
* several stability and performance optimizations, more effective filter parsing, etc;
* stable runnable within python versions 3.6 (as well as within 3.7-dev);
- Enhancements
* `filter.d/apache-auth.conf`: detection of Apache SNI errors resp. misredirect attempts (gh-2017, gh-2097);
* `filter.d/apache-noscript.conf`: extend failregex to match "Primary script unknown", e. g. from php-fpm (gh-2073);
* date-detector extended with long epoch (`LEPOCH`) to parse milliseconds/microseconds posix-dates (gh-2029);
* possibility to specify own regex-pattern to match epoch date-time, e. g. `^\[{EPOCH}\]` or `^\[{LEPOCH}\]` (gh-2038);
the epoch-pattern similar to `{DATE}` patterns does the capture and cuts out the match of whole pattern from the log-line,
e. g. date-pattern `^\[{LEPOCH}\]\s+:` will match and cut out `[1516469849551000] :` from begin of the log-line.
* badips.py now uses https instead of plain http when requesting badips.com (gh-2057);
* add support for "any" badips.py bancategory, to be able to retrieve IPs from all categories with a desired score (gh-2056);
* Introduced new parameter `padding` for logging within fail2ban-server (default on, excepting SYSLOG):
Usage `logtarget = target[padding=on|off]`

See Also

Package Description
fipscheck-1.4.1-33.156.i586.rpm A library for integrity verification of FIPS validated modules
fipscheck-1.4.1-33.156.x86_64.rpm A library for integrity verification of FIPS validated modules
fipscheck-devel-1.4.1-33.156.i586.rpm Development files for fipscheck
fipscheck-devel-1.4.1-33.156.x86_64.rpm Development files for fipscheck
firewalld-rpcbind-helper-0.2-10.2.noarch.rpm Tool for static port assignment of NFSv3, ypserv, ypbind services
fwbuilder-5.3.7-55.14.i586.rpm Firewall Builder
fwbuilder-5.3.7-55.14.x86_64.rpm Firewall Builder
google-authenticator-libpam-1.03-11.19.i586.rpm Google Authenticator PAM module
google-authenticator-libpam-1.03-11.19.x86_64.rpm Google Authenticator PAM module
google-authenticator-libpam-32bit-1.03-11.19.x86_64.rpm Google Authenticator PAM module
gufw-16.04.0-19.18.noarch.rpm Uncomplicated Firewall
gufw-lang-16.04.0-19.18.noarch.rpm Translations for package gufw
haas-proxy-1.9-7.1.noarch.rpm Man in the middle proxy for honeypot as a service
hardening-check-2.6-9.7.i586.rpm A tool for inspecting low-level hardening characteristics of ELF binaries
hardening-check-2.6-9.7.x86_64.rpm A tool for inspecting low-level hardening characteristics of ELF binaries
Advertisement
Advertisement