fail2ban 0.8.6-3wheezy3build0.12.04.1 source package in Ubuntu
Changelog
fail2ban (0.8.6-3wheezy3build0.12.04.1) precise-security; urgency=medium
* fake sync from Debian
fail2ban (0.8.6-3wheezy3) wheezy-security; urgency=high
* Use anchored failregex for filters to avoid possible DoS. Manually
picked up from the current status of 0.8 branch (as of
0.8.13-29-g09b2016):
- CVE-2013-7176: postfix.conf - anchored on the front, expects
"postfix/smtpd" prefix in the log line
- CVE-2013-7177: cyrus-imap.conf - anchored on the front, and
refactored to have a single failregex
- couriersmtp.conf - anchored on both sides
- exim.conf - front-anchored versions picked up from exim.conf
and exim-spam.conf
- lighttpd-fastcgi.conf - front-anchored picked up from suhosin.conf
-- Marc Deslauriers <email address hidden> Fri, 08 Aug 2014 14:06:12 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Precise
- Original maintainer:
- Yaroslav Halchenko
- Architectures:
- all
- Section:
- net
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Precise | updates | universe | net | |
| Precise | security | universe | net |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| fail2ban_0.8.6.orig.tar.gz | 104.5 KiB | 24d02422c55f1b7d92bea30a7dde6f72f280eadf09d478fcca8b1dd40fb4e914 |
| fail2ban_0.8.6-3wheezy3build0.12.04.1.diff.gz | 31.4 KiB | 092e62ac67306c73c14449c5024e22c28f1b66bb3f2b131fc02f8c0098e647ed |
| fail2ban_0.8.6-3wheezy3build0.12.04.1.dsc | 1.9 KiB | ce79a87ddd066334ba123b365004b698d0cb9b7ebbb02ab47eb16723a9d39d27 |
Available diffs
Binary packages built by this source
- fail2ban: ban hosts that cause multiple authentication errors
Fail2ban monitors log files (e.g. /var/log/auth.log,
/var/log/apache/ access. log) and temporarily or persistently bans
failure-prone addresses by updating existing firewall rules. Fail2ban allows
easy specification of different actions to be taken such as to ban an
IP using iptables or hostsdeny rules, or simply to send a
notification email.
.
By default, it comes with filter expressions for various services
(sshd, apache, qmail, proftpd, sasl etc.) but configuration can be
easily extended for monitoring any other text file. All filters and
actions are given in the config files, thus fail2ban can be adopted
to be used with a variety of files and firewalls.
