summaryrefslogtreecommitdiff
path: root/config/action.d
Commit message (Collapse)AuthorAgeFilesLines
...
| * | | Change tool from 'cut' to 'sed'Ilya2020-04-271-1/+1
| | | | | | | | | | | | Sed regex was tested - it works.
| * | | Fix actionunbanIlya2020-04-271-1/+1
| |/ / | | | | | | Add command to remove new line character. Needed for working removing rule from cloudflare firewall.
| * | action.d/*-ipset*.conf: several ipset actions fixed (no timeout per default ↵sebres2020-04-254-31/+61
| | | | | | | | | | | | anymore), so no discrepancy between ipset and fail2ban (removal from ipset will be managed by fail2ban only)
* | | Merge branch '0.10' into 0.11sebres2020-01-141-2/+4
|\ \ \ | |/ / | | / | |/ |/|
| * action.d/nginx-block-map.conf: fixed backslash substitution (different echo ↵sebres2020-01-141-2/+4
| | | | | | | | behavior in some shells, gh-2596)
* | Merge branch '0.10' into 0.11sebres2019-10-181-13/+32
|\ \ | |/
| * nftables: amend to gh-2254 - implemented shutdown of action (proper ↵sebres2019-10-181-0/+9
| | | | | | | | | | | | | | clean-up) - at stop it checks now the last set was deleted and removes table completely (if table does not contain any set); this is avoided if some sets were added manually or can be avoided via overwriting of parameter `_nft_shutdown_table`, for example: banaction = nftables[_nft_shutdown_table=''][...]
| * nftables: add options allowing to specify own table (default `f2b-table`) ↵sebres2019-10-181-11/+21
| | | | | | | | and chain (default `f2b-chain`)
| * regrouping expressions with curly braces, added more escapes (better ↵sebres2019-10-181-5/+5
| | | | | | | | handling in posix shell)
* | Merge branch '0.10' into 0.11sebres2019-10-184-151/+190
|\ \ | |/
| * fixed mistake in config (semicolon after space as comment in configs?) and ↵sebres2019-09-251-3/+3
| | | | | | | | coverage, suppress errors by unsupported flush, better space handling in helper _nft_get_handle_id, etc
| * action.d/nftables.conf: implemented `actionflush` (allows flushing nftables ↵sebres2019-09-241-9/+22
| | | | | | | | sets resp. fast unban of all jail tickets at all)
| * allow to use multiple protocols in multiport (single set with multiple rules ↵sebres2019-09-241-4/+15
| | | | | | | | | | | | | | in chain): `banaction = nftables[type=multiport]` with `protocol="tcp,udp,sctp"` in jail replace 3 separate actions. more robust if deleting multiple references to set (rules in chain)
| * combine nftables actions to single action:sebres2019-09-243-22/+22
| | | | | | | | | | | | - nftables-common is removed - nftables-allports is obsolete, replaced by nftables[type=allports] - nftables-multiport is obsolete, replaced by nftables[type=multiport]
| * nftables-allports: support multiple protocols in single rule;sebres2019-09-241-1/+1
| | | | | | | | tests/servertestcase.py: added coverage for nftables actions
| * fix actionban/unban ip definition syntaxRirisoft2019-09-241-2/+2
| |
| * Rewrite nftables variables based on nftables' logic.Monson Shao2019-09-243-48/+63
| | | | | | | | Add an example for redirecting.
* | Merge branch '0.10' into 0.11sebres2019-07-221-9/+3
|\ \ | |/
| * Badips key is only used to retrieve listbenrubson2019-06-261-9/+3
| |
* | Merge branch '0.10' into 0.11sebres2019-06-2610-22/+31
|\ \ | |/
| * normalize, simplify and fix several mail actions (mail and sendmail actions ↵sebres2019-06-1510-22/+31
| | | | | | | | | | | | are more similar now, sendmail is configurable via parameter `mailcmd`, etc); added test covering sendmail-whois-lines
* | Merge branch '0.10' into 0.11sebres2019-06-121-15/+5
|\ \ | |/
| * action.d/badips.py: fix start of banaction on demand (which may be IP-family ↵sebres2019-06-121-15/+5
| | | | | | | | | | | | related), supplied action info with ticket instead of simulating it with dict; (closes gh-2390)
* | Merge branch '0.10' into 0.11sebres2019-06-071-4/+1
|\ \ | |/
| * cut comment to limit documented on abuseipdb, additionally use curl in quiet ↵Sergey G. Brester2019-06-071-1/+1
| | | | | | | | mode
| * Switch to AbuseIPDB API v2Carlos Ferreira2019-06-071-4/+1
| |
* | Merge branch '0.10' into 0.11sebres2019-05-101-2/+3
|\ \ | |/
| * action.d/helpers-common.conf: grep arguments are rewritten - using options ↵sebres2019-05-101-2/+3
| | | | | | | | `-wF` to match only whole words and fixed string (not as pattern)
| * Fix grep pattern to deal with Apache's error logchtheis2019-05-101-1/+1
| | | | | | Apache's error log appends the port to the IP address, other logs don't.
* | Merge branch '0.10' into 0.11sebres2019-05-022-1/+4
|\ \ | |/
| * action.d/nginx-block-map.conf: small fix with better RE-rule for removal of ↵sebres2019-05-021-1/+1
| | | | | | | | ID (token/session) via sed (anchored now)
| * closes gh-2408: prevent execution of action `abuseipdb` for restored ticketsSergey G. Brester2019-04-291-0/+3
| |
* | Merge branch '0.10' into 0.11sebres2019-03-271-6/+22
|\ \ | |/
| * action.d/xarf-login-attack.conf: fixes gh-2372, correction for split of ↵sebres2019-03-161-6/+22
| | | | | | | | | | | | addresses, interpolation is shell-independent now, etc; extended with option `boundary`, additionally dynamic boundary part is used (is not so predictable as it was previously);
* | Merge branch '0.10' into 0.11sebres2019-03-011-7/+16
|\ \ | |/
| * loglevel and shortloglevel combined to single parameter loglevel, below an ↵sebres2019-02-221-8/+9
| | | | | | | | | | | | example logging summary with NOTICE and rest with DEBUG log-levels: action = badips.py[... , loglevel="debug, notice"]
| * Add a shortloglevel badips.py optionbenrubson2019-02-221-5/+13
| |
* | Merge branch '0.10' into 0.11sebres2019-02-221-6/+6
|\ \ | |/
| * coverage: try to avoid sporadic "coverage decreased" in CIsebres2019-02-221-6/+6
| |
* | fix: correct spelling categorytodgru2019-01-141-1/+1
| |
* | Merge branch '0.10' into 0.11sebres2018-11-211-1/+1
|\ \ | |/
| * Merge remote-tracking branch 'remotes/gh-upstream/master' into 0.10sebres2018-11-211-1/+1
| |\
| | * "be" instead of "me" in shorewall.confdienteperro2018-11-151-1/+1
| | |
* | | Merge branch '0.10' into 0.11 (version bump after r.0.10.4)sebres2018-10-041-10/+19
|\ \ \ | |/ /
| * | Merge pull request #2205 from benrubson/patch-1Sergey G. Brester2018-10-021-10/+19
| |\ \ | | | | | | | | Add loglevel option to badips.py
| | * | fixed py3 incompatibility (for some reasons this file seems to be excluded ↵Sergey G. Brester2018-10-021-2/+2
| | | | | | | | | | | | | | | | from 2to3), anyway not needed, because int-type is already checked in str2LogLevel
| | * | badips.py: Rewrite new bool option "log" as "loglevel" and revert default to ↵Sergey G. Brester2018-10-021-13/+13
| | | | | | | | | | | | | | | | log-level (DEBUG).
| | * | Also log number of IPs removed/addedBen RUBSON2018-09-081-6/+9
| | | |
| | * | TypoBen RUBSON2018-08-191-1/+1
| | | |
| | * | Add yes/no log option to badips.pyBen RUBSON2018-08-191-8/+14
| | | |
View Lorry Controller Status