wok-next diff fail2ban/receipt @ rev 17559
slim: why force base theme on update
| author | Richard Dunbar <mojo@slitaz.org> |
|---|---|
| date | Thu Feb 05 21:41:45 2015 -0500 (2015-02-05) |
| parents | d0d74920c618 |
| children | 16df76e1fc6a |
line diff
1.1 --- a/fail2ban/receipt Fri Feb 14 12:28:03 2014 +0000 1.2 +++ b/fail2ban/receipt Thu Feb 05 21:41:45 2015 -0500 1.3 @@ -1,7 +1,7 @@ 1.4 # SliTaz package receipt. 1.5 1.6 PACKAGE="fail2ban" 1.7 -VERSION="0.8.12" 1.8 +VERSION="0.9.0" 1.9 CATEGORY="network" 1.10 SHORT_DESC="Scans log files to bans IP that makes too many password failures." 1.11 MAINTAINER="pascal.bellard@slitaz.org" 1.12 @@ -27,9 +27,13 @@ 1.13 { 1.14 mkdir -p $fs/etc/logrotate.d $fs/etc/init.d 1.15 cp -a $install/* $fs 1.16 - sed -i 's/= \\s\*(/= \\s*\\S+\\s\*(/' > $fs/etc/fail2ban/filter.d/common.conf 1.17 + sed -i 's/= \\s\*(/= \\s*\\S+\\s\*(/' $fs/etc/fail2ban/filter.d/common.conf 1.18 sed -i -e 's|127.0.0.1|& 192.168.0.0/16|;s|sshd.log|messages|' \ 1.19 -e '/ssh-iptables/{nn;s/false/true/}' $fs/etc/fail2ban/jail.conf 1.20 + 1.21 + cp -a $stuff/etc/fail2ban/ $fs/etc/ 1.22 + cp -a $stuff/etc/init.d $fs/etc/ 1.23 + 1.24 cat >> $fs/etc/fail2ban/jail.conf <<EOT 1.25 [apache-noscript] 1.26 1.27 @@ -50,6 +54,14 @@ 1.28 bantime = 172800 1.29 maxretry = 2 1.30 1.31 +[apache-w00tw00t] 1.32 +enabled = false 1.33 +filter = apache-w00tw00t 1.34 +action = iptables[name=Apache-w00tw00t,port=80,protocol=tcp] 1.35 + logpath = /var/log/apache/*access 1.36 + maxretry = 1 1.37 + bantime = 172800 1.38 + 1.39 [lighttpd-fastcgi] 1.40 1.41 enabled = false 1.42 @@ -77,7 +89,7 @@ 1.43 findtime = 604800 1.44 bantime = 604800 1.45 EOT 1.46 - ln -s /usr/bin/fail2ban-client $fs/etc/init.d/fail2ban 1.47 + #ln -s /usr/bin/fail2ban-client $fs/etc/init.d/fail2ban 1.48 cat > $fs/etc/logrotate.d/fail2ban <<EOT 1.49 /var/log/fail2ban.log { 1.50 weekly