-
-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Wrong paths for apache and nginx log files under FreeBSD #1667
Comments
7 tasks
chtheis
added a commit
to chtheis/fail2ban
that referenced
this issue
Jan 17, 2017
chtheis
added a commit
to chtheis/fail2ban
that referenced
this issue
Jan 17, 2017
fixed in #1673 |
yarikoptic
added a commit
to yarikoptic/fail2ban
that referenced
this issue
May 11, 2017
ver. 0.9.7 (2017/05/11) - awaiting-victory ----------- 0.9.x line is no longer heavily developed. If you are interested in new features (e.g. IPv6 support), please consider 0.10 branch and its releases. * Fixed a systemd-journal handling in fail2ban-regex (fail2bangh-1657) * filter.d/sshd.conf - Fixed non-anchored part of failregex (misleading match of colon inside IPv6 address instead of `: ` in the reason-part by missing space, fail2bangh-1658) (0.10th resp. IPv6 relevant only, amend for fail2bangh-1479) * config/pathes-freebsd.conf - Fixed filenames for apache and nginx log files (fail2bangh-1667) * filter.d/exim.conf - optional part `(...)` after host-name before `[IP]` (fail2bangh-1751) - new reason "Unrouteable address" for "rejected RCPT" regex (fail2bangh-1762) - match of complex time like `D=2m42s` in regex "no MAIL in SMTP connection" (fail2bangh-1766) * filter.d/sshd.conf - new aggressive rules (fail2bangh-864): - Connection reset by peer (multi-line rule during authorization process) - No supported authentication methods available - single line and multi-line expression optimized, added optional prefixes and suffix (logged from several ssh versions), according to fail2bangh-1206; - fixed expression received disconnect auth fail (optional space after port part, fail2bangh-1652) and suffix (logged from several ssh versions), according to fail2bangh-1206; * filter.d/suhosin.conf - greedy catch-all before `<HOST>` fixed (potential vulnerability) * filter.d/cyrus-imap.conf - accept entries without login-info resp. hostname before IP address (fail2bangh-1707) * Filter tests extended with check of all config-regexp, that contains greedy catch-all before `<HOST>`, that is hard-anchored at end or precise sub expression after `<HOST>` * New Actions: - action.d/netscaler: Block IPs on a Citrix Netscaler ADC (fail2bangh-1663) * New Filters: - filter.d/domino-smtp: IBM Domino SMTP task (fail2bangh-1603) * Introduced new log-level `MSG` (as INFO-2, equivalent to 18) * tag '0.9.7': (33 commits) Preparing for 0.9.7 release Added newly added files to MANIFEST update ChangeLog filter.d/exim.conf: added new reason for "rejected RCPT" regex: Unrouteable address try to fix travis integration of pypy3: setuptools recently dropped support for Python 3.0 - 3.2, but old pypy3 based on Python 3.2.5 filter.d/exim.conf: cherry-picked from 0.10, match complex time like `D=2m42s` (closes fail2bangh-1766) Update ChangeLog fail2ban#1757 filter.d/exim.conf: optional part `(...)` after host-name before `[IP]`, normalized over whole config file. BF: specify explicit time offset not a time zone name to avoid needing tzdata during testing Update ChangeLog amend resp. restore of change from 59c35bc (fail2bangh-129): - logging of "Log rotation detected" with new MSG level - introduces new log-level MSG (as INFO-2, 18) Update mysqld-auth.conf Update ChangeLog filter.d/cyrus-imap.conf: fixed `failregex` - accept entries without login-info resp. hostname before IP address evil symlink removed: does not supported by some file systems (e. g. development over net share) sshd-amend: optional space after port part suhosin.conf: removed greedy match sshd.conf: fixed expression "received disconnect ... auth fail" - optional space after port part (fail2bangh-1652) change log update after rebase sshd: additionally aggressive filter rules - no matching cipher resp. no matching key exchange method (fail2bangh-1545, fail2bangh-1117) ...
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In the files config/paths-freebsd.conf the pathes to the log files of apache and nginx are wrong.
They should read as:
apache_error_log = /var/log/httpd-error.log
apache_access_log = /var/log/httpd-access.log
and
nginx_error_log = /var/log/nginx/error.log
nginx_access_log = /var/log/nginx/access.log
The text was updated successfully, but these errors were encountered: