| 1 |
%define version 0.1.18 |
| 2 |
%define release 29 |
| 3 |
%define name smeserver-fail2ban |
| 4 |
|
| 5 |
Summary: fail2ban integration on SME Server |
| 6 |
Name: %{name} |
| 7 |
Version: %{version} |
| 8 |
Release: %{release}%{?dist} |
| 9 |
Epoch: 9 |
| 10 |
License: GPL |
| 11 |
Group: Networking/Daemons |
| 12 |
Source: %{name}-%{version}.tar.gz |
| 13 |
Patch0: smeserver-fail2ban-0.1.18.bz10767-adminpanel.patch |
| 14 |
Patch1: smeserver-fail2ban-0.1.18.bz9709-wordpress.patch |
| 15 |
Patch2: smeserver-fail2ban-0.1.18.bz10775-sfail2ban.patch |
| 16 |
Patch3: smeserver-fail2ban-0.1.18-locale-2019-05-15.patch |
| 17 |
Patch4: smeserver-fail2ban-0.1.18-bz10776-wordpress.patch |
| 18 |
Patch5: smeserver-fail2ban-0.1.18-bz9669-sogo.patch |
| 19 |
Patch6: smeserver-fail2ban-0.1.18-bz10814-denylist-display.patch |
| 20 |
Patch7: smeserver-fail2ban-0.1.18-bz10817-configure.patch |
| 21 |
Patch8: smeserver-fail2ban-0.1.18.bz10839.patch |
| 22 |
Patch9: smeserver-fail2ban-0.1.18.bz10370.patch |
| 23 |
Patch10: smeserver-fail2ban-0.1.18-Add-update-to-createlinks.patch |
| 24 |
Patch11: smeserver-fail2ban-0.1.18-bz11586-serverfailstostart.patch |
| 25 |
Patch12: smeserver-fail2ban-0.1.18-bz11636-smanager.patch |
| 26 |
Patch13: smeserver-fail2ban-0.1.18-locale-2021-08-22.patch |
| 27 |
Patch14: smeserver-fail2ban-0.1.18-locale-2021-09-08.patch |
| 28 |
Patch15: smeserver-fail2ban-0.1.18-bz11586-redofailtostart.patch |
| 29 |
Patch16: smeserver-fail2ban-0.1.18-bz11650.patch |
| 30 |
Patch17: smeserver-fail2ban-0.1.18-bz11651-wordpress.patch |
| 31 |
Patch18: smeserver-fail2ban-0.1.18-bz10857.patch |
| 32 |
Patch19: smeserver-fail2ban-0.1.18-bz10819-whitelisthostfix.patch |
| 33 |
Patch20: smeserver-fail2ban-0.1.18-Add-class-to-div-for-AdminLTE.patch |
| 34 |
Patch21: smeserver-fail2ban-0.1.18-locale-2022-07-22.patch |
| 35 |
Patch22: smeserver-fail2ban-0.1.18-bz12008-backup.patch |
| 36 |
|
| 37 |
BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot |
| 38 |
BuildArchitectures: noarch |
| 39 |
BuildRequires: e-smith-devtools |
| 40 |
|
| 41 |
Requires: e-smith-base >= 5.2.0 |
| 42 |
Requires: fail2ban-server, fail2ban-sendmail |
| 43 |
Requires: perl-Data-Validate-IP |
| 44 |
Obsoletes: fail2ban-firewalld, firewalld |
| 45 |
AutoReqProv: no |
| 46 |
|
| 47 |
%description |
| 48 |
Configure fail2ban on SME Server |
| 49 |
|
| 50 |
%changelog |
| 51 |
* Fri Jul 29 2022 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-29.sme |
| 52 |
- add to core backup [SME: 12008] |
| 53 |
|
| 54 |
* Mon Jul 25 2022 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-28.sme |
| 55 |
- revert previous patch, wrong package [SME: 12011] |
| 56 |
|
| 57 |
* Fri Jul 22 2022 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-27.sme |
| 58 |
- add to core backup [SME: 12011] |
| 59 |
|
| 60 |
* Fri Jul 22 2022 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-26.sme |
| 61 |
- apply locale patch 2022-07-22 |
| 62 |
|
| 63 |
* Fri Jan 07 2022 Brian Read <brianr@bjsystems.co.uk> 0.1.18-25.sme |
| 64 |
- Add-class-to-div-for-AdminLTE [SME: 11837] |
| 65 |
|
| 66 |
* Thu Dec 09 2021 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-24.sme |
| 67 |
- fix adding removing whitelisted hosts [SME: 10819] |
| 68 |
moved config options to dedicated page |
| 69 |
- removed apache-badbots.local, lot of false positives [SME: 10857] |
| 70 |
|
| 71 |
* Wed Dec 08 2021 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-22.sme |
| 72 |
- fix apache-badbots logfile definition [SME: 10857] |
| 73 |
add updated badbot list. |
| 74 |
|
| 75 |
* Wed Dec 08 2021 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-21.sme |
| 76 |
- update wordpress filters [SME: 11651] |
| 77 |
|
| 78 |
* Wed Dec 08 2021 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-20.sme |
| 79 |
- allow baning subnet [SME: 11650] |
| 80 |
|
| 81 |
* Wed Oct 27 2021 John Crisp <jcrisp@safeandsoundit.co.uk> 0.1.18-19.sme |
| 82 |
- Fix my versioning |
| 83 |
|
| 84 |
* Wed Oct 27 2021 John Crisp <jcrisp@safeandsoundit.co.uk> 0.1.18-18.sme |
| 85 |
- Add Requires for perl-Data-Validate-IP [SME: 11720] |
| 86 |
|
| 87 |
* Sun Sep 12 2021 Terry Fage <terry.fage@gmail.com> 0.1.18-17.sme |
| 88 |
- redo fix for typo qpsmtpd status [SME: 11636] |
| 89 |
|
| 90 |
* Wed Sep 08 2021 Terry Fage <terry.fage@gmail.com> 0.1.18-16.sme |
| 91 |
- Update locale 2021-09-08 patch |
| 92 |
|
| 93 |
* Sun Aug 22 2021 Terry Fage <terry.fage@gmail.com> 0.1.18-15.sme |
| 94 |
- Update locale 2021-08-21 patch |
| 95 |
|
| 96 |
* Thu Jul 08 2021 Michel Begue <mab974@gmail.com> 0.1.18-14.sme |
| 97 |
- Add fail2ban panel in smeserver-manager [SME: 11636] |
| 98 |
- add smanager jail and filter |
| 99 |
- fix typo for qsmtpd status change |
| 100 |
- add AutoReqProv so smeserver-manager is not required |
| 101 |
|
| 102 |
* Mon May 31 2021 Jean-Philippe Pialasse <tests@pialasse.com> 0.1.18-13.sme |
| 103 |
- fix requirements and avoid firewalld [SME: 10949] |
| 104 |
|
| 105 |
* Tue May 25 2021 Terry Fage <tfage@yahoo.com.au> 0.1.18-12.sme |
| 106 |
- Server Fails to Start SME10 [SME: 11586] |
| 107 |
|
| 108 |
* Mon Apr 19 2021 Brian Read <brianr@bjsystems.co.uk> 0.1.18-11.sme |
| 109 |
- Initial import to SME10 [SME: 10949] |
| 110 |
- Add -update event to createlinks. |
| 111 |
|
| 112 |
* Wed Nov 27 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-10.sme |
| 113 |
- fix wordpress template error [SME: 10839] |
| 114 |
- rewrite rule for [SME: 9719] |
| 115 |
- add configurable values for recidive jail [SME: 10370] |
| 116 |
|
| 117 |
* Wed Oct 16 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-9.sme |
| 118 |
- propagate configuration changes to fail2ban after submiting changes [SME: 10817] |
| 119 |
|
| 120 |
* Wed Oct 16 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-8.sme |
| 121 |
- fix blocked hosts list not displaying unless smeserver-denyhosts also installed [SME: 10814] |
| 122 |
|
| 123 |
* Fri Jul 19 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-7.sme |
| 124 |
- prevent fail2ban failure if sogo not installed while a backup restored db entries [SME: 9669] |
| 125 |
|
| 126 |
* Mon Jun 03 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-6.sme |
| 127 |
- fix incorrect permissions on sfail2ban [SME: 10775] |
| 128 |
|
| 129 |
* Mon Jun 03 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-5.sme |
| 130 |
- fix wordpress fragment error preventing jail.conf to be updated [SME: 10776] |
| 131 |
|
| 132 |
* Tue May 14 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-4.sme |
| 133 |
- fix missing sfail2ban exec [SME: 10775] |
| 134 |
- Apply locals |
| 135 |
|
| 136 |
* Tue Apr 09 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-3.sme |
| 137 |
- add admin panel [SME: 10767] |
| 138 |
- add wordpress jails and filters [SME: 9709] |
| 139 |
|
| 140 |
* Fri Oct 27 2017 Daniel Berteaud <daniel@firewall-services.com> - 0.1.18-1.sme |
| 141 |
- Ignore greylisting, from Michael McCarn [SME: 10447] |
| 142 |
|
| 143 |
* Thu Nov 17 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.17-1.sme |
| 144 |
- Makes sur log files exist before resuming monitoring after a logrotate |
| 145 |
[SME: 9875] |
| 146 |
|
| 147 |
* Tue Aug 2 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.16-1.sme |
| 148 |
- Add a new prop (FilterValidRemoteHosts) to allow blacklisting of hosts allowed |
| 149 |
to access the server-manager |
| 150 |
- Ignore 0.0.0.0/0.0.0.0 by default [SME: 9719] |
| 151 |
|
| 152 |
* Tue Jul 5 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.15-1.sme |
| 153 |
- Fix compat with older qpsmtpd |
| 154 |
|
| 155 |
* Thu Jun 9 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.14-1.sme |
| 156 |
- Update regex for qpsmtpd 0.96 |
| 157 |
|
| 158 |
* Mon Feb 29 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.13-1.sme |
| 159 |
- Ignore failure to get proxy.pac |
| 160 |
|
| 161 |
* Fri Jul 24 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.12-1.sme |
| 162 |
- Updates for fail2ban 0.9.2 |
| 163 |
- Add more httpd jails |
| 164 |
- Switch to upstream Ejabberd filter |
| 165 |
|
| 166 |
* Wed Apr 15 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.11-1.sme |
| 167 |
- Start fail2ban a bit later [SME: 8708] |
| 168 |
|
| 169 |
* Tue Jan 27 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.10-1.sme |
| 170 |
- Suspend log monitoring during logrotate [SME: 8708] |
| 171 |
|
| 172 |
* Thu Jan 15 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.9-1.sme |
| 173 |
- Fix LL::NG jail name |
| 174 |
|
| 175 |
* Wed Sep 17 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.8-1.sme |
| 176 |
- Restart fail2ban during logrotate event so it re-open apache log file [SME: 8557] |
| 177 |
|
| 178 |
* Wed Jun 25 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.7-1.sme |
| 179 |
- Correctly handle single IP in IgnoreIP prop |
| 180 |
|
| 181 |
* Tue Jun 24 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.6-1.sme |
| 182 |
- Relax proxy regex so requests for proxy.pac aren't matched |
| 183 |
|
| 184 |
* Mon Jun 23 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.5-1.sme |
| 185 |
- Pre-create the logfile so fail2ban can start the first time |
| 186 |
- Remove most warnings on startup |
| 187 |
|
| 188 |
* Wed Apr 23 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.4-1.sme |
| 189 |
- New branch for SME9 |
| 190 |
- Remove sogo-auth.conf which is included in EL6 build of fail2ban |
| 191 |
|
| 192 |
* Wed Dec 18 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.3-1.sme |
| 193 |
- Fix port, which was incorrectly set to proto |
| 194 |
|
| 195 |
* Tue Nov 19 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.2-1.sme |
| 196 |
- Create the DB entries in one transaction to reduce the amount of log |
| 197 |
for each ban |
| 198 |
|
| 199 |
* Thu Jul 4 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.1-1.sme |
| 200 |
- Fix service name for LemonLDAP::NG |
| 201 |
|
| 202 |
* Tue May 14 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.0-1.sme |
| 203 |
- initial release |
| 204 |
|
| 205 |
%prep |
| 206 |
%setup -q -n %{name}-%{version} |
| 207 |
%patch0 -p1 |
| 208 |
%patch1 -p1 |
| 209 |
%patch2 -p1 |
| 210 |
%patch3 -p1 |
| 211 |
%patch4 -p1 |
| 212 |
%patch5 -p1 |
| 213 |
%patch6 -p1 |
| 214 |
%patch7 -p1 |
| 215 |
%patch8 -p1 |
| 216 |
%patch9 -p1 |
| 217 |
%patch10 -p1 |
| 218 |
%patch11 -p1 |
| 219 |
%patch12 -p1 |
| 220 |
%patch13 -p1 |
| 221 |
%patch14 -p1 |
| 222 |
%patch15 -p1 |
| 223 |
%patch16 -p1 |
| 224 |
%patch17 -p1 |
| 225 |
%patch18 -p1 |
| 226 |
%patch19 -p1 |
| 227 |
%patch20 -p1 |
| 228 |
%patch21 -p1 |
| 229 |
%patch22 -p1 |
| 230 |
|
| 231 |
%build |
| 232 |
%{__mkdir_p} root/var/log/fail2ban |
| 233 |
perl createlinks |
| 234 |
|
| 235 |
%install |
| 236 |
/bin/rm -rf $RPM_BUILD_ROOT |
| 237 |
(cd root ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT) |
| 238 |
/bin/rm -f %{name}-%{version}-filelist |
| 239 |
/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \ |
| 240 |
--dir /var/log/fail2ban 'attr(0750,root,root)' \ |
| 241 |
--file /var/log/fail2ban/daemon.log 'config(noreplace) %attr(0600,root,root)' \ |
| 242 |
--file /etc/cron.daily/cleanup_fail2ban 'attr(0755,root,root)' \ |
| 243 |
--file /etc/fail2ban/filter.d/apache-auth.local 'config(noreplace) %attr(0644,root,root)' \ |
| 244 |
--file /usr/bin/sfail2ban 'attr(0755,root,root)' \ |
| 245 |
> %{name}-%{version}-filelist |
| 246 |
#--file /etc/fail2ban/filter.d/apache-badbots.local 'config(noreplace) %attr(0644,root,root)' \ |
| 247 |
|
| 248 |
%files -f %{name}-%{version}-filelist |
| 249 |
%defattr(-,root,root) |
| 250 |
|
| 251 |
%clean |
| 252 |
rm -rf $RPM_BUILD_ROOT |
| 253 |
|
| 254 |
%post |
| 255 |
|
| 256 |
%preun |
Parent Directory
| 
Revision Log
| 
Revision Graph
