[Lunar-commits] <moonbase-other> Merge branch 'dagbrown-fail2ban'
Stefan Wold
ratler at lunar-linux.org
Sat Sep 20 15:27:23 CEST 2014
commit 0c8e9b18ce127b5ba3509d28c0a8b15256eca968
Author: Stefan Wold <ratler at lunar-linux.org>
Date: Sat, 20 Sep 2014 15:27:10 +0200
URL: https://github.com/lunar-linux/moonbase-other/commit/0c8e9b18ce127b5ba3509d28c0a8b15256eca968
Merge branch 'dagbrown-fail2ban'
---
security/fail2ban/BUILD | +3/-0
security/fail2ban/DEPENDS | +2/-0
security/fail2ban/DETAILS | +16/-0
security/fail2ban/systemd.d/fail2ban.service | +14/-0
security/fail2ban/tmpfiles.d/fail2ban.conf | +1/-0
5 files changed, 36 insertions(+)
--- /dev/null
+++ b/security/fail2ban/BUILD
@@ -0,0 +1,3 @@
+python setup.py build_ext -i &&
+prepare_install &&
+python setup.py install
--- /dev/null
+++ b/security/fail2ban/DEPENDS
@@ -0,0 +1,2 @@
+depends iptables
+depends Python
--- /dev/null
+++ b/security/fail2ban/DETAILS
@@ -0,0 +1,16 @@
+ MODULE=fail2ban
+ VERSION=0.8.13
+ SOURCE=${MODULE}-${VERSION}.tar.gz
+ SOURCE_URL=https://github.com/fail2ban/fail2ban/releases/download/$VERSION/
+ SOURCE_VFY=sha256:854e641b194fa76e2b9579e4440e9b6dad4055bdd316b109df639658bfc7007f
+ WEB_SITE="http://www.find2ban.org/"
+ ENTERED=20140806
+ UPDATED=20140806
+ SHORT="Log file scanner to detect malicious activity"
+cat << EOF
+Fail2ban scans log files (e.g. /var/log/apache/error_log) and bans IPs
+that show the malicious signs -- too many password failures, seeking for
+exploits, etc. Generally Fail2Ban is then used to update firewall rules
+to reject the IP addresses for a specified amount of time, although any
+arbitrary other action (e.g. sending an email) could also be configured.
+EOF
--- /dev/null
+++ b/security/fail2ban/systemd.d/fail2ban.service
@@ -0,0 +1,14 @@
+[Unit]
+Description=Fail2ban security service
+After=syslog.target network.target
+
+[Service]
+Type=forking
+PIDFile=/run/fail2ban/fail2ban.pid
+ExecStart=/usr/bin/fail2ban-client -x start
+ExecReload=/usr/bin/fail2ban-client reload
+ExecStop=/usr/bin/fail2ban-client stop
+Restart=always
+
+[Install]
+WantedBy=multi-user.target
--- /dev/null
+++ b/security/fail2ban/tmpfiles.d/fail2ban.conf
@@ -0,0 +1 @@
+D /run/fail2ban 0755 root root -
More information about the Lunar-commits
mailing list