smeserver-fail2ban/contribs9/smeserver-fail2ban.spec

%define version 0.1.18
%define release 9
%define name smeserver-fail2ban


Summary: fail2ban integration on SME Server
Name: %{name}
Version: %{version}
Release: %{release}%{?dist}
Epoch: 9
License: GPL
Group: Networking/Daemons
Source: %{name}-%{version}.tar.gz
Patch0:smeserver-fail2ban-0.1.18.bz10767-adminpanel.patch
Patch1: smeserver-fail2ban-0.1.18.bz9709-wordpress.patch
Patch2: smeserver-fail2ban-0.1.18.bz10775-sfail2ban.patch
Patch3: smeserver-fail2ban-0.1.18-locale-2019-05-15.patch
Patch4: smeserver-fail2ban-0.1.18-bz10776-wordpress.patch
Patch5: smeserver-fail2ban-0.1.18-bz9669-sogo.patch
Patch6: smeserver-fail2ban-0.1.18-bz10814-denylist-display.patch
Patch7: smeserver-fail2ban-0.1.18-bz10817-configure.patch
BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
BuildArchitectures: noarch
BuildRequires: e-smith-devtools

Requires: e-smith-base >= 5.2.0
Requires: fail2ban


%description
Configure fail2ban on SME Server

%changelog
* Wed Oct 16 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-9.sme
- propagate configuration changes to fail2ban after submiting changes [SME: 10817]

* Wed Oct 16 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-8.sme
- fix blocked hosts list not displaying unless smeserver-denyhosts also installed [SME: 10814]

* Fri Jul 19 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-7.sme
- prevent fail2ban failure if sogo not installed while a backup restored db entries [SME: 9669]

* Mon Jun 03 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-6.sme
- fix incorrect permissions on sfail2ban [SME: 10775]

* Mon Jun 03 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-5.sme
- fix wordpress fragment error preventing jail.conf to be updated [SME: 10776]

* Tue May 14 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-4.sme
- fix missing sfail2ban exec [SME: 10775]
- Apply locals

* Tue Apr 09 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-3.sme
- add admin panel [SME: 10767]
- add wordpress jails and filters [SME: 9709]

* Fri Oct 27 2017 Daniel Berteaud <daniel@firewall-services.com> - 0.1.18-1.sme
- Ignore greylisting, from Michael McCarn [SME: 10447]

* Thu Nov 17 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.17-1.sme
- Makes sur log files exist before resuming monitoring after a logrotate
  [SME: 9875]

* Tue Aug 2 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.16-1.sme
- Add a new prop (FilterValidRemoteHosts) to allow blacklisting of hosts allowed
  to access the server-manager
- Ignore 0.0.0.0/0.0.0.0 by default [SME: 9719]

* Tue Jul 5 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.15-1.sme
- Fix compat with older qpsmtpd

* Thu Jun 9 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.14-1.sme
- Update regex for qpsmtpd 0.96

* Mon Feb 29 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.13-1.sme
- Ignore failure to get proxy.pac

* Fri Jul 24 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.12-1.sme
- Updates for fail2ban 0.9.2
- Add more httpd jails
- Switch to upstream Ejabberd filter

* Wed Apr 15 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.11-1.sme
- Start fail2ban a bit later [SME: 8708]

* Tue Jan 27 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.10-1.sme
- Suspend log monitoring during logrotate [SME: 8708]

* Thu Jan 15 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.9-1.sme
- Fix LL::NG jail name

* Wed Sep 17 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.8-1.sme
- Restart fail2ban during logrotate event so it re-open apache log file [SME: 8557]

* Wed Jun 25 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.7-1.sme
- Correctly handle single IP in IgnoreIP prop

* Tue Jun 24 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.6-1.sme
- Relax proxy regex so requests for proxy.pac aren't matched

* Mon Jun 23 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.5-1.sme
- Pre-create the logfile so fail2ban can start the first time
- Remove most warnings on startup

* Wed Apr 23 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.4-1.sme
- New branch for SME9
- Remove sogo-auth.conf which is included in EL6 build of fail2ban
>>>>>>> sme9

* Wed Dec 18 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.3-1.sme
- Fix port, which was incorrectly set to proto

* Tue Nov 19 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.2-1.sme
- Create the DB entries in one transaction to reduce the amount of log
  for each ban

* Thu Jul 4 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.1-1.sme
- Fix service name for LemonLDAP::NG

* Tue May 14 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.0-1.sme
- initial release

%prep
%setup -q -n %{name}-%{version}
%patch0 -p1
%patch1 -p1
%patch2 -p1
%patch3 -p1
%patch4 -p1
%patch5 -p1
%patch6 -p1
%patch7 -p1

%build
%{__mkdir_p} root/var/log/fail2ban
perl createlinks

%install
/bin/rm -rf $RPM_BUILD_ROOT
(cd root   ; /usr/bin/find . -depth -print | /bin/cpio -dump $RPM_BUILD_ROOT)
/bin/rm -f %{name}-%{version}-filelist
/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
   --dir /var/log/fail2ban 'attr(0750,root,root)' \
   --file /var/log/fail2ban/daemon.log 'config(noreplace) %attr(0600,root,root)' \
   --file /etc/cron.daily/cleanup_fail2ban 'attr(0755,root,root)' \
   --file /etc/fail2ban/filter.d/apache-auth.local 'config(noreplace) %attr(0644,root,root)' \
   --file /usr/bin/sfail2ban 'attr(0755,root,root)' \
  > %{name}-%{version}-filelist

%files -f %{name}-%{version}-filelist
%defattr(-,root,root)

%clean
rm -rf $RPM_BUILD_ROOT

%post

%preun

1	%define version 0.1.18
2	%define release 9
3	%define name smeserver-fail2ban
4
5
6	Summary: fail2ban integration on SME Server
7	Name: %{name}
8	Version: %{version}
9	Release: %{release}%{?dist}
10	Epoch: 9
11	License: GPL
12	Group: Networking/Daemons
13	Source: %{name}-%{version}.tar.gz
14	Patch0:smeserver-fail2ban-0.1.18.bz10767-adminpanel.patch
15	Patch1: smeserver-fail2ban-0.1.18.bz9709-wordpress.patch
16	Patch2: smeserver-fail2ban-0.1.18.bz10775-sfail2ban.patch
17	Patch3: smeserver-fail2ban-0.1.18-locale-2019-05-15.patch
18	Patch4: smeserver-fail2ban-0.1.18-bz10776-wordpress.patch
19	Patch5: smeserver-fail2ban-0.1.18-bz9669-sogo.patch
20	Patch6: smeserver-fail2ban-0.1.18-bz10814-denylist-display.patch
21	Patch7: smeserver-fail2ban-0.1.18-bz10817-configure.patch
22	BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot
23	BuildArchitectures: noarch
24	BuildRequires: e-smith-devtools
25
26	Requires: e-smith-base >= 5.2.0
27	Requires: fail2ban
28
29
30	%description
31	Configure fail2ban on SME Server
32
33	%changelog
34	* Wed Oct 16 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-9.sme
35	- propagate configuration changes to fail2ban after submiting changes [SME: 10817]
36
37	* Wed Oct 16 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-8.sme
38	- fix blocked hosts list not displaying unless smeserver-denyhosts also installed [SME: 10814]
39
40	* Fri Jul 19 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-7.sme
41	- prevent fail2ban failure if sogo not installed while a backup restored db entries [SME: 9669]
42
43	* Mon Jun 03 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-6.sme
44	- fix incorrect permissions on sfail2ban [SME: 10775]
45
46	* Mon Jun 03 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-5.sme
47	- fix wordpress fragment error preventing jail.conf to be updated [SME: 10776]
48
49	* Tue May 14 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-4.sme
50	- fix missing sfail2ban exec [SME: 10775]
51	- Apply locals
52
53	* Tue Apr 09 2019 Jean-Philipe Pialasse <tests@pialasse.com> 0.1.18-3.sme
54	- add admin panel [SME: 10767]
55	- add wordpress jails and filters [SME: 9709]
56
57	* Fri Oct 27 2017 Daniel Berteaud <daniel@firewall-services.com> - 0.1.18-1.sme
58	- Ignore greylisting, from Michael McCarn [SME: 10447]
59
60	* Thu Nov 17 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.17-1.sme
61	- Makes sur log files exist before resuming monitoring after a logrotate
62	[SME: 9875]
63
64	* Tue Aug 2 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.16-1.sme
65	- Add a new prop (FilterValidRemoteHosts) to allow blacklisting of hosts allowed
66	to access the server-manager
67	- Ignore 0.0.0.0/0.0.0.0 by default [SME: 9719]
68
69	* Tue Jul 5 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.15-1.sme
70	- Fix compat with older qpsmtpd
71
72	* Thu Jun 9 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.14-1.sme
73	- Update regex for qpsmtpd 0.96
74
75	* Mon Feb 29 2016 Daniel Berteaud <daniel@firewall-services.com> - 0.1.13-1.sme
76	- Ignore failure to get proxy.pac
77
78	* Fri Jul 24 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.12-1.sme
79	- Updates for fail2ban 0.9.2
80	- Add more httpd jails
81	- Switch to upstream Ejabberd filter
82
83	* Wed Apr 15 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.11-1.sme
84	- Start fail2ban a bit later [SME: 8708]
85
86	* Tue Jan 27 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.10-1.sme
87	- Suspend log monitoring during logrotate [SME: 8708]
88
89	* Thu Jan 15 2015 Daniel Berteaud <daniel@firewall-services.com> - 0.1.9-1.sme
90	- Fix LL::NG jail name
91
92	* Wed Sep 17 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.8-1.sme
93	- Restart fail2ban during logrotate event so it re-open apache log file [SME: 8557]
94
95	* Wed Jun 25 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.7-1.sme
96	- Correctly handle single IP in IgnoreIP prop
97
98	* Tue Jun 24 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.6-1.sme
99	- Relax proxy regex so requests for proxy.pac aren't matched
100
101	* Mon Jun 23 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.5-1.sme
102	- Pre-create the logfile so fail2ban can start the first time
103	- Remove most warnings on startup
104
105	* Wed Apr 23 2014 Daniel Berteaud <daniel@firewall-services.com> - 0.1.4-1.sme
106	- New branch for SME9
107	- Remove sogo-auth.conf which is included in EL6 build of fail2ban
108	>>>>>>> sme9
109
110	* Wed Dec 18 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.3-1.sme
111	- Fix port, which was incorrectly set to proto
112
113	* Tue Nov 19 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.2-1.sme
114	- Create the DB entries in one transaction to reduce the amount of log
115	for each ban
116
117	* Thu Jul 4 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.1-1.sme
118	- Fix service name for LemonLDAP::NG
119
120	* Tue May 14 2013 Daniel Berteaud <daniel@firewall-services.com> - 0.1.0-1.sme
121	- initial release
122
123	%prep
124	%setup -q -n %{name}-%{version}
125	%patch0 -p1
126	%patch1 -p1
127	%patch2 -p1
128	%patch3 -p1
129	%patch4 -p1
130	%patch5 -p1
131	%patch6 -p1
132	%patch7 -p1
133
134	%build
135	%{__mkdir_p} root/var/log/fail2ban
136	perl createlinks
137
138	%install
139	/bin/rm -rf $RPM_BUILD_ROOT
140	(cd root ; /usr/bin/find . -depth -print \| /bin/cpio -dump $RPM_BUILD_ROOT)
141	/bin/rm -f %{name}-%{version}-filelist
142	/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \
143	--dir /var/log/fail2ban 'attr(0750,root,root)' \
144	--file /var/log/fail2ban/daemon.log 'config(noreplace) %attr(0600,root,root)' \
145	--file /etc/cron.daily/cleanup_fail2ban 'attr(0755,root,root)' \
146	--file /etc/fail2ban/filter.d/apache-auth.local 'config(noreplace) %attr(0644,root,root)' \
147	--file /usr/bin/sfail2ban 'attr(0755,root,root)' \
148	> %{name}-%{version}-filelist
149
150	%files -f %{name}-%{version}-filelist
151	%defattr(-,root,root)
152
153	%clean
154	rm -rf $RPM_BUILD_ROOT
155
156	%post
157
158	%preun
159