From: Arturo 'B. B. <bu...@bu...> - 2011-07-29 03:43:52
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 I don't see the need to move to git, but I approve of tagging 0_8_5 :) On 07/28/2011 11:38 PM, Yaroslav Halchenko wrote: > N.B. not sure if I have rights to post to f2b-announce but let's see > > Since it has been 2 years since 0.8.4 and since I got tired of adding > +svn suffix to Debian releases of fail2ban, I have decided to exercise > my commit rights to fail2ban SVN repository and tagged FAIL2BAN-0_8_5 > release which besides all accumulated fixes got 1 more received from > Ubuntu... I will try to get in touch with Cyril to see if I could prep > tarball, otherwise please fetch from SVN. > > Also -- to foster fail2ban evolution I would like to suggest to move > fail2ban from SVN to GIT on github to ease creation and review of > contributions. Ideas/opinions? I can't promise too much > activity/attention but at least to keep ball rolling slowly but > steadily. > > Here is the changelog for 0.8.5: > > ver. 0.8.5 (2011/07/28) - stable > ---------- > - Fix: use addfailregex instead of failregex while processing per-jail > "failregex" parameter (Fixed Debian bug #635830, LP: #635036). Thanks to > Marat Khayrullin for the patch and Daniel T Chen for forwarding to > Debian. > - Fix: use os.path.join to generate full path - fixes includes in configs > given local filename (5 weeks ago) [yarikoptic] > - Fix: allowed for trailing spaces in proftpd logs > - Fix: escaped () in pure-ftpd filter. Thanks to Teodor > - Fix: allowed space in the trailing of failregex for sasl.conf: > see http://bugs.debian.org/573314 > - Fix: use /var/run/fail2ban instead of /tmp for temp files in actions: > see http://bugs.debian.org/544232 > - Fix: Tai64N stores time in GMT, needed to convert to local time before > returning > - Fix: disabled named-refused-udp jail entirely with a big fat warning > - Fix: added time module. Bug reported in buanzo's blog: > see http://blogs.buanzo.com.ar/2009/04/fail2ban-patch-ban-ip-address-manually.html > - Fix: Patch to make log file descriptors cloexec to stop leaking file > descriptors on fork/exec. Thanks to Jonathan Underwood: > see https://bugzilla.redhat.com/show_bug.cgi?id=230191#c24 > - Enhancement: added author for dovecot filter and pruned unneeded space > in the regexp > - Enhancement: proftpd filter -- if login failed -- count regardless of the > reason for failure > - Enhancement: added <chain> to action.d/iptables*. Thanks to Matthijs Kooijman: > see http://bugs.debian.org/515599 > - Enhancement: added filter.d/dovecot.conf from Martin Waschbuesch > - Enhancement: made filter.d/apache-overflows.conf catch more: > see http://bugs.debian.org/574182 > - Enhancement: added dropbear filter from Francis Russell and Zak B. Elep: > see http://bugs.debian.org/546913 > - Enhancement: changed default ignoreip to ignore entire loopback zone (/8): > see http://bugs.debian.org/598200 > - Minor: spell-checked jail.conf. Thanks to Christoph Anton Mitterer > - Few minor cosmetic changes > > - -- ? Arturo "Buanzo" Busleiman ? - http://soundcloud.com/no-carrier - Independent Linux and Security Consultant - 16+y of IT exp. at your service . OWASPer - http://www.buanzo.com.ar/pro/eng.html ..: -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEAREKAAYFAk4yLGsACgkQAlpOsGhXcE1Y+gCeOvXFy2Wao/YTkPO5Fn5qXM2N ViEAn38K+ywAlCqEFz+MPuQzgcbNQJp2 =NlkD -----END PGP SIGNATURE----- |