fail2ban 0.10.2-1 source package in Ubuntu
Changelog
fail2ban (0.10.2-1) unstable; urgency=medium
[ Yaroslav Halchenko ]
* New major upstream release (thanks to Ervin Hegedüs for help updating
packaging)
- Major performance improvements, especially in tests battery
execution, and shutdown (Closes: #878038)
- Incremental increase of bantime (Closes: #498164)
- IPv6 support (Closes: #881648, #470417)
- Some filters refactored/deprecated, e.g. to take advantage of new
filter option mode
- sshd-aggressive and sshd-ddos absorbed into sshd filter
(modes: normal, ddos, extra, or aggressive)
- postfix-rbl and postfix-sasl absorbed into postfix
(modes: more, normal, auth, rbl, ddos, extra, or aggressive)
- New actions: abuseipd, nginx-block-map
- New filters: phpmyadmin-syslog, zoneminder
* A number of new patches added to address failing tests from
https://github.com/fail2ban/fail2ban/pull/2025
* debian/control
- Boosted policy to 4.1.3
- sqlite3 is now needed for some tests, thus added to build-depends
and suggests
* debian/README.Debian
- Instructions on how to establish correct startup/shutdown sequence
in systemd for shorewall (Closes: #847728). Thanks Ben Coleman for the
final recipe
[ Viktor Szépe ]
* Install provided config for monit under /etc/monit/conf-available
(instead of /etc/monit/monitrc.d, location changed after monit 1:5.15-2)
-- Yaroslav Halchenko <email address hidden> Mon, 22 Jan 2018 10:38:19 -0500
Upload details
- Uploaded by:
- Yaroslav Halchenko
- Uploaded to:
- Sid
- Original maintainer:
- Yaroslav Halchenko
- Architectures:
- all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| fail2ban_0.10.2-1.dsc | 1.9 KiB | fcd49c3eff53c0b9ff200675522de231ebba172fe44b2efb5aea7bc85b2bba7b |
| fail2ban_0.10.2.orig.tar.gz | 463.6 KiB | 22744cb9f2dbc50ba50873b14dbfc9b4c078c170f4d29b2600faf3da99b4038d |
| fail2ban_0.10.2-1.debian.tar.xz | 28.2 KiB | 7e976c5e052ff482ad571f1f3f4c6d4d0a2e9309e09e59d5ca273158e7e69908 |
Available diffs
- diff from 0.9.7-2 to 0.10.2-1 (278.8 KiB)
No changes file available.
Binary packages built by this source
- fail2ban: ban hosts that cause multiple authentication errors
Fail2ban monitors log files (e.g. /var/log/auth.log,
/var/log/apache/ access. log) and temporarily or persistently bans
failure-prone addresses by updating existing firewall rules. Fail2ban
allows easy specification of different actions to be taken such as to ban
an IP using iptables or hostsdeny rules, or simply to send a notification
email.
.
By default, it comes with filter expressions for various services
(sshd, apache, qmail, proftpd, sasl etc.) but configuration can be
easily extended for monitoring any other text file. All filters and
actions are given in the config files, thus fail2ban can be adopted
to be used with a variety of files and firewalls. Following recommends
are listed:
.
- iptables/nftables -- default installation uses iptables for banning.
nftables is also suported. You most probably need it
- whois -- used by a number of *mail-whois* actions to send notification
emails with whois information about attacker hosts. Unless you will use
those you don't need whois
- python3-pyinotify -- unless you monitor services logs via systemd, you
need pyinotify for efficient monitoring for log files changes
