# HG changeset patch # User Carl Byington # Date 1313601136 25200 # Node ID 73dd2daeaf8e27964442d0eca81a94f10f6d3125 # Parent d237bc6331addc45aa988b06cb7b10c48dc2f53f switch to auto requires diff -r d237bc6331ad -r 73dd2daeaf8e ChangeLog --- a/ChangeLog Sat Feb 07 11:31:43 2009 -0800 +++ b/ChangeLog Wed Aug 17 10:12:16 2011 -0700 @@ -1,3 +1,6 @@ +1.13 2011-08-17 + Switch to auto requires for rpm builds. + 1.13 2009-01-25 Document multiple contexts. diff -r d237bc6331ad -r 73dd2daeaf8e syslog2iptables.conf --- a/syslog2iptables.conf Sat Feb 07 11:31:43 2009 -0800 +++ b/syslog2iptables.conf Wed Aug 17 10:12:16 2011 -0700 @@ -44,9 +44,29 @@ bucket 400; message "ftp failed password"; }; + pattern "vsftpd.* authentication failure; .* rhost=(.*) " { + index 1; // zero based + bucket 400; + message "ftp failed password"; + }; + pattern "dovecot.* authentication failure; .* rhost=::ffff:(.*) " { + index 1; // zero based + bucket 400; + message "dovecot failed password"; + }; + pattern "dovecot.* authentication failure; .* rhost=(.*) " { + index 1; // zero based + bucket 400; + message "dovecot failed password"; + }; }; file "/var/log/messages" { + pattern "dovecot.* authentication failure; .* rhost=(.*) " { + index 1; // zero based + bucket 400; + message "dovecot failed password"; + }; pattern "ipop3d.* Login failed .* \[(.*)\]" { index 1; // zero based bucket 400; @@ -83,6 +103,31 @@ bucket 400; message "apache adxmlrpc reference"; }; + pattern "(.*) - - .*/includes/general.js" { + index 1; // zero based + bucket 400; + message "apache general.js reference"; + }; + pattern "(.*) - - .*/phpMyAdmin/" { + index 1; // zero based + bucket 400; + message "apache phpMyAdmin reference"; + }; + pattern "(.*) - - .*/cart/" { + index 1; // zero based + bucket 400; + message "apache cart reference"; + }; + pattern "(.*) - - .*/zen/" { + index 1; // zero based + bucket 400; + message "apache zen reference"; + }; + pattern "(.*) - - .*/zencart/" { + index 1; // zero based + bucket 400; + message "apache zencart reference"; + }; }; file "/var/log/maillog" { diff -r d237bc6331ad -r 73dd2daeaf8e syslog2iptables.spec.in --- a/syslog2iptables.spec.in Sat Feb 07 11:31:43 2009 -0800 +++ b/syslog2iptables.spec.in Wed Aug 17 10:12:16 2011 -0700 @@ -3,20 +3,18 @@ Summary: Syslog to iptables dynamic firewall Name: @PACKAGE@ Version: @VERSION@ -Release: 1%{?dist} +Release: 2%{?dist} License: GPLv3+ Group: System Environment/Daemons Source: http://www.five-ten-sg.com/%{name}/packages/%{name}-%{version}.tar.gz BuildRoot: %(mktemp -ud %{_tmppath}/%{name}-%{version}-%{release}-XXXXXX) URL: http://www.five-ten-sg.com/%{name}/ -AutoReqProv: no Requires(post,preun): /sbin/chkconfig Requires(post,preun): /sbin/service Requires: iptables Requires: coreutils BuildRequires: gcc gcc-c++ -Requires: libc.so.6, libgcc_s.so.1, libm.so.6, libpthread.so.0, libstdc++.so.6 %description @@ -69,6 +67,9 @@ %changelog +* Wed Aug 17 2011 Carl Byington - 1.13-2 +- switch to auto requires + * Sun Jan 25 2009 Carl Byington - 1.13-1 - Document multiple contexts.