wok-next diff fail2ban/receipt @ rev 13226
Move from undigest: airstrike
author | Pascal Bellard <pascal.bellard@slitaz.org> |
---|---|
date | Tue Aug 14 13:38:50 2012 +0200 (2012-08-14) |
parents | 1716dac173ae |
children | 585734d0d3e1 |
line diff
1.1 --- a/fail2ban/receipt Mon Aug 06 14:55:22 2012 +0200 1.2 +++ b/fail2ban/receipt Tue Aug 14 13:38:50 2012 +0200 1.3 @@ -26,6 +26,7 @@ 1.4 { 1.5 mkdir -p $fs/etc/logrotate.d $fs/etc/init.d 1.6 cp -a $install/* $fs 1.7 + sed -i 's/= \\s\*(/= \\s*\\S+\\s\*(/' > /etc/fail2ban/filter.d/common.conf 1.8 sed -i -e 's|127.0.0.1|& 192.168.0.0/16|;s|sshd.log|messages|' \ 1.9 -e '/ssh-iptables/{nn;s/false/true/}' $fs/etc/fail2ban/jail.conf 1.10 cat >> $fs/etc/fail2ban/jail.conf <<EOT 1.11 @@ -38,6 +39,14 @@ 1.12 logpath = /var/log/messages 1.13 maxretry = 2 1.14 1.15 +[fail2ban] 1.16 +enabled = true 1.17 +filter = fail2ban 1.18 +action = iptables-allports[name=FAIL2BAN] 1.19 +logpath = /var/log/fail2ban.log 1.20 +maxretry = 5 1.21 +findtime = 604800 1.22 +bantime = 604800 1.23 EOT 1.24 ln -s /usr/bin/fail2ban-client $fs/etc/init.d/fail2ban 1.25 cat > $fs/etc/logrotate.d/fail2ban <<EOT