Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Wrong paths for apache and nginx log files under FreeBSD #1667

Closed
chtheis opened this issue Jan 13, 2017 · 1 comment
Closed

Wrong paths for apache and nginx log files under FreeBSD #1667

chtheis opened this issue Jan 13, 2017 · 1 comment

Comments

@chtheis
Copy link
Contributor

chtheis commented Jan 13, 2017

In the files config/paths-freebsd.conf the pathes to the log files of apache and nginx are wrong.
They should read as:
apache_error_log = /var/log/httpd-error.log
apache_access_log = /var/log/httpd-access.log
and
nginx_error_log = /var/log/nginx/error.log
nginx_access_log = /var/log/nginx/access.log
@chtheis chtheis mentioned this issue Jan 14, 2017
Closed
7 tasks
chtheis added a commit to chtheis/fail2ban that referenced this issue Jan 17, 2017
@chtheis
fail2ban#1667: Wrong paths for apache and nginx under FreeBSD
6187431
chtheis added a commit to chtheis/fail2ban that referenced this issue Jan 17, 2017
@chtheis
fail2ban#1667: changelog entry
fe76cd9
@sebres
Copy link
Contributor

sebres commented Jan 21, 2017

fixed in #1673

@sebres sebres closed this as completed Jan 21, 2017
yarikoptic added a commit to yarikoptic/fail2ban that referenced this issue May 11, 2017
@yarikoptic
Merge tag '0.9.7' into debian
96323b1 
ver. 0.9.7 (2017/05/11) - awaiting-victory
-----------

0.9.x line is no longer heavily developed.  If you are interested in
new features (e.g. IPv6 support), please consider 0.10 branch and its
releases.

* Fixed a systemd-journal handling in fail2ban-regex (fail2bangh-1657)
* filter.d/sshd.conf
    - Fixed non-anchored part of failregex (misleading match of colon inside
      IPv6 address instead of `: ` in the reason-part by missing space, fail2bangh-1658)
      (0.10th resp. IPv6 relevant only, amend for fail2bangh-1479)
* config/pathes-freebsd.conf
    - Fixed filenames for apache and nginx log files (fail2bangh-1667)
* filter.d/exim.conf
    - optional part `(...)` after host-name before `[IP]` (fail2bangh-1751)
    - new reason "Unrouteable address" for "rejected RCPT" regex (fail2bangh-1762)
    - match of complex time like `D=2m42s` in regex "no MAIL in SMTP connection" (fail2bangh-1766)
* filter.d/sshd.conf
    - new aggressive rules (fail2bangh-864):
      - Connection reset by peer (multi-line rule during authorization process)
      - No supported authentication methods available
    - single line and multi-line expression optimized, added optional prefixes
      and suffix (logged from several ssh versions), according to fail2bangh-1206;
    - fixed expression received disconnect auth fail (optional space after port
      part, fail2bangh-1652)
      and suffix (logged from several ssh versions), according to fail2bangh-1206;
* filter.d/suhosin.conf
    - greedy catch-all before `<HOST>` fixed (potential vulnerability)
* filter.d/cyrus-imap.conf
    - accept entries without login-info resp. hostname before IP address (fail2bangh-1707)
* Filter tests extended with check of all config-regexp, that contains greedy catch-all
  before `<HOST>`, that is hard-anchored at end or precise sub expression after `<HOST>`

* New Actions:
    - action.d/netscaler: Block IPs on a Citrix Netscaler ADC (fail2bangh-1663)

* New Filters:
    - filter.d/domino-smtp: IBM Domino SMTP task (fail2bangh-1603)

* Introduced new log-level `MSG` (as INFO-2, equivalent to 18)

* tag '0.9.7': (33 commits)
  Preparing for 0.9.7 release
  Added newly added files to MANIFEST
  update ChangeLog
  filter.d/exim.conf: added new reason for "rejected RCPT" regex: Unrouteable address
  try to fix travis integration of pypy3: setuptools recently dropped support for Python 3.0 - 3.2, but old pypy3 based on Python 3.2.5
  filter.d/exim.conf: cherry-picked from 0.10, match complex time like `D=2m42s` (closes fail2bangh-1766)
  Update ChangeLog fail2ban#1757
  filter.d/exim.conf: optional part `(...)` after host-name before `[IP]`, normalized over whole config file.
  BF: specify explicit time offset not a time zone name to avoid needing tzdata during testing
  Update ChangeLog
  amend resp. restore of change from 59c35bc (fail2bangh-129): - logging of "Log rotation detected" with new MSG level - introduces new log-level MSG (as INFO-2, 18)
  Update mysqld-auth.conf
  Update ChangeLog
  filter.d/cyrus-imap.conf: fixed `failregex` - accept entries without login-info resp. hostname before IP address
  evil symlink removed: does not supported by some file systems (e. g. development over net share)
  sshd-amend: optional space after port part
  suhosin.conf: removed greedy match
  sshd.conf: fixed expression "received disconnect ... auth fail" - optional space after port part (fail2bangh-1652)
  change log update after rebase
  sshd: additionally aggressive filter rules - no matching cipher resp. no matching key exchange method (fail2bangh-1545, fail2bangh-1117)
  ...
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@chtheis @sebres