1 |
hwoarang 11/12/30 10:18:51 |
2 |
|
3 |
Added: fail2ban-0.8.6-sshd-breakin.patch |
4 |
Log: |
5 |
Version bump. Bug #392481 |
6 |
|
7 |
(Portage version: 2.2.0_alpha82/cvs/Linux x86_64) |
8 |
|
9 |
Revision Changes Path |
10 |
1.1 net-analyzer/fail2ban/files/fail2ban-0.8.6-sshd-breakin.patch |
11 |
|
12 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-analyzer/fail2ban/files/fail2ban-0.8.6-sshd-breakin.patch?rev=1.1&view=markup |
13 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-analyzer/fail2ban/files/fail2ban-0.8.6-sshd-breakin.patch?rev=1.1&content-type=text/plain |
14 |
|
15 |
Index: fail2ban-0.8.6-sshd-breakin.patch |
16 |
=================================================================== |
17 |
Index: fail2ban-fail2ban-a20d1f8/config/filter.d/sshd.conf |
18 |
=================================================================== |
19 |
--- fail2ban-fail2ban-a20d1f8.orig/config/filter.d/sshd.conf |
20 |
+++ fail2ban-fail2ban-a20d1f8/config/filter.d/sshd.conf |
21 |
@@ -31,8 +31,8 @@ failregex = ^%(__prefix_line)s(?:error: |
22 |
^%(__prefix_line)sUser .+ from <HOST> not allowed because not listed in AllowUsers$ |
23 |
^%(__prefix_line)sauthentication failure; logname=\S* uid=\S* euid=\S* tty=\S* ruser=\S* rhost=<HOST>(?:\s+user=.*)?\s*$ |
24 |
^%(__prefix_line)srefused connect from \S+ \(<HOST>\)\s*$ |
25 |
- ^%(__prefix_line)sAddress <HOST> .* POSSIBLE BREAK-IN ATTEMPT!*\s*$ |
26 |
- ^%(__prefix_line)sUser .+ from <HOST> not allowed because none of user's groups are listed in AllowGroups\s*$ |
27 |
+ ^%(__prefix_line)sreverse mapping checking getaddrinfo for .* \[<HOST>\] .* POSSIBLE BREAK-IN ATTEMPT!*\s*$ |
28 |
+ ^%(__prefix_line)sUser \S+ from <HOST> not allowed because none of user's groups are listed in AllowGroups\s*$ |
29 |
|
30 |
# Option: ignoreregex |
31 |
# Notes.: regex to ignore. If this regex matches, the line is ignored. |