Fix fail2ban-regex with journal broken in 0.9.6-1.
Update to 0.9.6:
filter.d/apache-modsecurity.conf
filter.d/asterisk.conf
filter.d/dovecot.conf
filter.d/ignorecommands/apache-fakegooglebot
filter.d/assp.conf
filter.d/postfix-sasl.conf
filter.d/vsftpd.conf
filter.d/sendmail-reject.conf
filter.d/sshd.conf
New Actions:
action.d/npf.conf
for NPF, the latest packet filter for NetBSDNew Filters:
filter.d/mongodb-auth.conf
for MongoDB (document-oriented NoSQL database engine)
(gh-1586, gh-1606 and gh-1607)DateTemplate regexp extended with the word-end boundary, additionally to word-start boundary
diff
-#!/usr/bin/env python
+#!/usr/bin/env fail2ban-python
backend = systemd[journalpath=/run/log/journal/machine-1]
backend = systemd[journalfiles="/run/log/journal/machine-1/system.journal, /run/log/journal/machine-1/user.journal"]
backend = systemd[journalflags=2]
Fix sendmail-auth filter (bug #1329919)
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2017-bb1e01ca29
Please login to add feedback.
This update has been submitted for testing by orion.
This update has obsoleted fail2ban-0.9.6-1.fc25, and has inherited its bugs and notes.
Still breaks fail2ban-regex
fail2ban-regex "systemd-journal" /etc/fail2ban/filter.d/sshd.conf
Running tests
Use failregex filter file : sshd, basedir: /etc/fail2ban Use maxlines : 10 Use journal match : _SYSTEMD_UNIT=sshd.service + _COMM=sshd
Traceback (most recent call last): File "/usr/bin/fail2ban-regex", line 34, in <module> exec_command_line() File "/usr/lib/python3.5/site-packages/fail2ban/client/fail2banregex.py", line 599, in exec_command_line if not fail2banRegex.start(opts, args): File "/usr/lib/python3.5/site-packages/fail2ban/client/fail2banregex.py", line 538, in start self.process(test_lines) File "/usr/lib/python3.5/site-packages/fail2ban/client/fail2banregex.py", line 370, in process for line_no, line in enumerate(test_lines): File "/usr/lib/python3.5/site-packages/fail2ban/client/fail2banregex.py", line 93, in journal_lines_gen yield FilterSystemd.formatJournalEntry(entry) TypeError: formatJournalEntry() missing 1 required positional argument: 'logentry'
This update has been pushed to testing.
Please disregard above comment, apparently I was still on 0.9.6-1. Re ran fail2ban-regex test for sendmail-auth.conf and sshd.conf with success..
no regressions noted
This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by orion.
This update has been pushed to stable.