ยซ Changelog History


Fail2Ban v0.8.9 Release Notes

Release Date: 2013-05-13 // about 11 years ago

  • ๐Ÿ›  Originally targeted as a bugfix release, it incorporated many new โœจ enhancements, few new features, and more importantly -- quite extended โœ… tests battery with current 94% coverage (from 56% of 0.8.8).

    ๐Ÿš€ This release introduces over 200 of non-merge commits from 16 contributors (sorted by number of commits): Yaroslav Halchenko, Daniel Black, Steven Hiscocks, James Stout, Orion Poplawski, Enrico Labedzki, ArndRa, hamilton5, pigsyn, Erwan Ben Souiden, Michael Gebetsroither, Artur Penttinen, blotus, sebres, Nicolas Collignon, Pascal Borreli.

    Special Kudos also go to Fabian Wenk, Arturo 'Buanzo' Busleiman, Tom ๐Ÿ‘ Hendrikx, Yehuda Katz and other TBN heroes supporting users on fail2ban-users mailing list and IRC.

    ๐Ÿ›  Fixes

    • Yaroslav Halchenko
      • [6f4dad46] python-2.4 is the minimal version.
      • [1eb23cf8] do not rely on scripts being under /usr -- might differ e.g. on Fedora. Closes gh-112. Thanks to Camusensei for the bug report.
      • [bf4d4af1] Changes for atomic writes. Thanks to Steven Hiscocks for insight. Closes gh-103.
      • [ab044b75] delay check for the existence of config directory until read.
      • [3b4084d4] fixing up for handling of TAI64N timestamps.
      • [154aa38e] do not shutdown logging until all jails stop.
      • [f2156604] pyinotify -- monitor IN_MOVED_TO events. Closes gh-184. Thanks to Jon Foster for report and troubleshooting.
    • Orion Poplawski
      • [e4aedfdc00] pyinotify - use bitwise op on masks and do not try tracking newly created directories.
    • Nicolas Collignon
      • [39667ff6] Avoid leaking file descriptors. Closes gh-167.
    • Sergey Brester
      • [b6bb2f88 and d17b4153] invalid date recognition, irregular because of sorting template list.
    • Steven Hiscocks
      • [7a442f07] When changing log target with python2.{4,5} handle KeyError. Closes gh-147, gh-148.
      • [b6a68f51] Fix delaction on server side. Closes gh-124.
    • Daniel Black
      • [f0610c01] Allow more that a one word command when changing and Action via the fail2ban-client. Closes gh-134.
      • [945ad3d9] Fix dates on email actions to work in different locals. Closes gh-70. Thanks to iGeorgeX for the idea.
    • blotus
      • [96eb8986] ' and " should also be escaped in action tags Closes gh-109
    • Christoph Theis, Nick Hilliard, Daniel Black
      • [b3bd877d,cde71080] Make syslog -v and syslog -vv formats work on FreeBSD

    ๐Ÿ†• New Features

    • Yaroslav Halchenko
      • [9ba27353] Add support for jail.d/{confilefile} and fail2ban.d/{configfile} to provide additional flexibility to system adminstrators. Thanks to beilber for the idea. Closes gh-114.
      • [3ce53e87] Add exim filter.
    • Erwan Ben Souiden
      • [d7d5228] add nagios integration documentation and script to ensure fail2ban is running. Closes gh-166.
    • Artur Penttinen
      • [29d0df5] Add mysqld filter. Closes gh-152.
    • ArndRaphael Brandes
      • [bba3fd8] Add Sogo filter. Closes gh-117.
    • Michael Gebetsriother
      • [f9b78ba] Add action route to block at routing level.
    • Teodor Micu & Yaroslav Halchenko
      • [5f2d383] Add roundcube auth filter. Closes Debian bug #699442.
    • Daniel Black
      • [be06b1b] Add action for iptables-ipsets. Closes gh-102.
    • Nick Munger, Ken Menzel, Daniel Black, Christoph Theis & Fabian Wenk
      • [b6d0e8a] Add and enhance the bsd-ipfw action from FreeBSD ports.
    • Soulard Morgan
      • [f336d9f] Add filter for webmin. Closes gh-99.
    • Steven Hiscocks
      • [..746c7d9] bash interactive shell completions for fail2ban-*'s
    • Nick Hilliard
      • [0c5a9c5] Add pf action.

    โœจ Enhancements

    • Enrico Labedzki
      • [24a8d07] Added new date format for ASSP SMTP Proxy.
    • Steven Hiscocks
      • [3d6791f] Ensure restart of Actions after a check fails occurs consistently. Closes gh-172.
      • [MANY] Improvements to test cases, travis, and code coverage (coveralls).
      • [b36835f] Add get cinfo to fail2ban-client. Closes gh-124.
      • [ce3ab34] Added ability to specify PID file.
    • Orion Poplawski
      • [ddebcab] Enhance fail2ban.service definition dependencies and Pidfile. Closes gh-142.
    • Yaroslav Halchenko
      • [MANY] Lots of improvements to log messages, man pages and test cases.
      • [91d5736] Postfix filter improvements - empty helo, from and rcpt to. Closes gh-126. Bug report by Michael Heuberger.
      • [40c5a2d] adding more of diagnostic messages into -client while starting the daemon.
      • [8e63d4c] Compare against None with 'is' instead of '=='.
      • [6fef85f] Strip CR and LF while analyzing the log line
    • Daniel Black
      • [3aeb1a9] Add jail.conf manual page. Closes gh-143.
      • [MANY] man page edits.
      • [7cd6dab] Added help command to fail2ban-client.
      • [c8c7b0b,23bbc60] Better logging of log file read errors.
      • [3665e6d] Added code coverage to development process.
      • [41b9f7b,32d10e9,39750b8] More complete ssh filter rules to match openssh source. Also include BSD changes.
      • [1d9abd1] Action files can have tags in definition that refer to other tags.
      • [10886e7,cec5da2,adb991a] Change actions to response with ICMP port unreachable rather than just a drop of the packet.
    • Pascal Borreli
      • [a2b29b4] Fixed lots of typos in config files and documentation.
    • hamilton5
      • [7ede1e8] Update dovecot filter config.
    • Romain Riviere
      • [0ac8746] Enhance named-refused filter for views.
    • James Stout
      • [..2143cdf] Solaris support enhancements:
        • README.Solaris
        • failregex'es tune ups (sshd.conf)
        • hostsdeny: do not rely on support of '-i' in sed