Fail2Ban scans log files like /var/log/pwdfail or /var/log/apache/error_log and bans IP that makes too many password failures. It updates firewall rules to reject the IP address. Currently, iptables, ipfwadm and ipfw are supported. It needs log4py. Require: python-2.3 (http://www.python.org) log4py-1.1 (http://sourceforge.net/projects/log4py) Homepage: http://fail2ban.sourceforge.net Reproducible: Always Steps to Reproduce:
Created attachment 57153 [details] Ebuild for Fail2Ban 0.4.0 Also available at http://fail2ban.sourceforge.net/ebuilds
Created attachment 62821 [details] Ebuild for Fail2Ban 0.4.1 Also available at http://fail2ban.sourceforge.net/ebuilds
Created attachment 64126 [details] Ebuild for Fail2Ban 0.5.1 This is the latest development release. Also available at http://fail2ban.sourceforge.net/ebuilds
Created attachment 65252 [details] Ebuild for Fail2Ban 0.5.2 This is the latest development release. Changelog - log4py is no more needed - added man pages and doc Also available at http://fail2ban.sourceforge.net/ebuilds
Created attachment 73260 [details] Ebuild for Fail2Ban 0.6.0 This is the latest stable version. Official website: http://fail2ban.sourceforge.net Gentoo forum: https://forums.gentoo.org/viewtopic-t-255103.html Debian: http://packages.debian.org/unstable/net/fail2ban Fail2Ban only requires Python. There is several user requests to include it into Portage.
Done. Committed 0.6.0 ebuild to cvs with minor changes as net-analyzer/fail2ban. Can amd64 folks give their word on amd64 keywording? Thanks!
Tested on amd64, seems to work fine. We can add it to ~amd64. Here's the emerge info of the machine I tested it on: Portage 2.0.51.22-r3 (default-linux/amd64/2005.1, gcc-3.4.4, glibc-2.3.5-r2, 2.6.13-gentoo-r2 x86_64) ================================================================= System uname: 2.6.13-gentoo-r2 x86_64 Intel(R) Pentium(R) 4 CPU 3.40GHz Gentoo Base System version 1.6.13 dev-lang/python: 2.3.5-r2, 2.4.2 sys-apps/sandbox: 1.2.12 sys-devel/autoconf: 2.13, 2.59-r6 sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6-r1 sys-devel/binutils: 2.15.92.0.2-r10 sys-devel/libtool: 1.5.20 virtual/os-headers: 2.6.11-r2 ACCEPT_KEYWORDS="amd64" AUTOCLEAN="yes" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-march=nocona -O2 -fomit-frame-pointer -ffast-math -pipe" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3/share/config /usr/share/config /var/qmail/control" CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d" CXXFLAGS="-march=nocona -O2 -fomit-frame-pointer -ffast-math -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="autoconfig distlocks multilib-strict sandbox sfperms strict" GENTOO_MIRRORS="ftp://cs.ubishops.ca:2121/pub/gentoo http://distfiles.gentoo.org http://www.ibiblio.org/pub/Linux/distributions/gentoo" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" SYNC="rsync://gentoo.cs.mcgill.ca/gentoo-portage" USE="amd64 apache apache2 avi bash-completion berkdb bitmap-fonts bzip2 crypt cups eds emacs emboss encode expat foomaticdb fortran gcj gdbm gif gmp gnutls gstreamer gtk2 hardened idn imap imlib ithreads java jpeg junit libwww lzw lzw-tiff memlimit mhash mp3 mpeg mysql ncurses nfs nis nls no-old-linux nonfsv4 nptl nptlonly pam pdflib perl php png postgres ppds python readline ruby samba spell sqlite ssl tcpd tiff truetype truetype-fonts type1-fonts udev usb userlocales winbind xml xml2 xpm zlib userland_GNU kernel_linux elibc_glibc" Unset: ASFLAGS, CTARGET, LANG, LC_ALL, LDFLAGS, LINGUAS, PORTDIR_OVERLAY
~amd64 keyworded thanks all