Fail2ban-999999999 added.
This commit is contained in:
parent
c5ffe738cb
commit
ef1b5cca40
|
|
@ -0,0 +1,107 @@
|
|||
# Copyright 1999-2015 Gentoo Foundation
|
||||
# Distributed under the terms of the GNU General Public License v2
|
||||
# $Id$
|
||||
|
||||
EAPI=5
|
||||
PYTHON_COMPAT=( python{2_7,3_3,3_4} pypy )
|
||||
DISTUTILS_SINGLE_IMPL=1
|
||||
|
||||
inherit distutils-r1 eutils git-r3 systemd vcs-snapshot
|
||||
|
||||
DESCRIPTION="scans log files and bans IPs that show malicious signs"
|
||||
HOMEPAGE="http://www.fail2ban.org/"
|
||||
EGIT_REPO_URI="https://github.com/${PN}/${PN}/"
|
||||
|
||||
LICENSE="GPL-2"
|
||||
SLOT="0"
|
||||
KEYWORDS=""
|
||||
IUSE="selinux systemd"
|
||||
|
||||
RDEPEND="
|
||||
net-firewall/iptables
|
||||
net-misc/whois
|
||||
virtual/logger
|
||||
virtual/mta
|
||||
selinux? ( sec-policy/selinux-fail2ban )
|
||||
systemd? ( $(python_gen_cond_dep '|| (
|
||||
dev-python/python-systemd[${PYTHON_USEDEP}]
|
||||
sys-apps/systemd[python(-),${PYTHON_USEDEP}]
|
||||
)' 'python*' ) )
|
||||
"
|
||||
|
||||
DOCS=( ChangeLog DEVELOP README.md THANKS TODO doc/run-rootless.txt )
|
||||
|
||||
src_unpack() {
|
||||
git-r3_src_unpack
|
||||
}
|
||||
|
||||
src_prepare() {
|
||||
# Replace /var/run with /run, but not in the top source directory
|
||||
sed -i -e 's|/var\(/run/fail2ban\)|\1|g' $( find . -type f -mindepth 2 ) || die
|
||||
|
||||
# Fix bashisms and do not direct useful output to /dev/null (bug #536320)
|
||||
# Remove global logrotate settings (bug #549856)
|
||||
epatch \
|
||||
"${FILESDIR}"/${PN}-0.9.2-initd.patch \
|
||||
"${FILESDIR}"/${PN}-0.9.2-logrotate.patch
|
||||
|
||||
distutils-r1_src_prepare
|
||||
}
|
||||
|
||||
python_test() {
|
||||
${EPYTHON} bin/${PN}-testcases
|
||||
}
|
||||
|
||||
src_install() {
|
||||
distutils-r1_src_install
|
||||
|
||||
rm -rf "${D}"/usr/share/doc/${PN}
|
||||
|
||||
# not FILESDIR
|
||||
newconfd files/gentoo-confd ${PN}
|
||||
newinitd files/gentoo-initd ${PN}
|
||||
systemd_dounit files/${PN}.service
|
||||
systemd_dotmpfilesd files/${PN}-tmpfiles.conf
|
||||
doman man/*.{1,5}
|
||||
|
||||
# Use INSTALL_MASK if you do not want to touch /etc/logrotate.d.
|
||||
# See http://thread.gmane.org/gmane.linux.gentoo.devel/35675
|
||||
insinto /etc/logrotate.d
|
||||
newins files/${PN}-logrotate ${PN}
|
||||
}
|
||||
|
||||
pkg_preinst() {
|
||||
has_version "<${CATEGORY}/${PN}-0.7"
|
||||
previous_less_than_0_7=$?
|
||||
}
|
||||
|
||||
pkg_postinst() {
|
||||
if [[ $previous_less_than_0_7 = 0 ]] ; then
|
||||
elog
|
||||
elog "Configuration files are now in /etc/fail2ban/"
|
||||
elog "You probably have to manually update your configuration"
|
||||
elog "files before restarting Fail2ban!"
|
||||
elog
|
||||
elog "Fail2ban is not installed under /usr/lib anymore. The"
|
||||
elog "new location is under /usr/share."
|
||||
elog
|
||||
elog "You are upgrading from version 0.6.x, please see:"
|
||||
elog "http://www.fail2ban.org/wiki/index.php/HOWTO_Upgrade_from_0.6_to_0.8"
|
||||
fi
|
||||
if ! has_version ${CATEGORY}/${PN}; then
|
||||
if ! has_version dev-python/pyinotify && ! has_version app-admin/gamin; then
|
||||
elog "For most jail.conf configurations, it is recommended you install either"
|
||||
elog "dev-python/pyinotify or app-admin/gamin (in order of preference)"
|
||||
elog "to control how log file modifications are detected"
|
||||
fi
|
||||
if ! has_version dev-lang/python[sqlite]; then
|
||||
elog "If you want to use ${PN}'s persistent database, then reinstall"
|
||||
elog "dev-lang/python with USE=sqlite"
|
||||
fi
|
||||
|
||||
if has_version sys-apps/systemd[-python]; then
|
||||
elog "If you want to track logins through sys-apps/systemd's"
|
||||
elog "journal backend, then reinstall sys-apps/systemd with USE=python"
|
||||
fi
|
||||
fi
|
||||
}
|
||||
|
|
@ -0,0 +1,25 @@
|
|||
--- a/files/gentoo-initd
|
||||
+++ b/files/gentoo-initd
|
||||
@@ -38,19 +38,19 @@
|
||||
# bug 347477
|
||||
rm -rf /run/fail2ban/fail2ban.sock || return 1
|
||||
fi
|
||||
- ${FAIL2BAN} start &> /dev/null
|
||||
+ ${FAIL2BAN} start
|
||||
eend $? "Failed to start fail2ban"
|
||||
}
|
||||
|
||||
stop() {
|
||||
ebegin "Stopping fail2ban"
|
||||
- ${FAIL2BAN} stop &> /dev/null
|
||||
+ ${FAIL2BAN} stop
|
||||
eend $? "Failed to stop fail2ban"
|
||||
}
|
||||
|
||||
reload() {
|
||||
ebegin "Reloading fail2ban"
|
||||
- ${FAIL2BAN} reload > /dev/null
|
||||
+ ${FAIL2BAN} reload
|
||||
eend $? "Failed to reload fail2ban"
|
||||
}
|
||||
|
||||
|
|
@ -0,0 +1,12 @@
|
|||
--- a/files/fail2ban-logrotate
|
||||
+++ b/files/fail2ban-logrotate
|
||||
@@ -9,9 +9,7 @@
|
||||
# http://pkgs.fedoraproject.org/cgit/fail2ban.git/tree/fail2ban-logrotate
|
||||
|
||||
/var/log/fail2ban.log {
|
||||
- rotate 7
|
||||
missingok
|
||||
notifempty
|
||||
- compress
|
||||
postrotate
|
||||
/usr/bin/fail2ban-client flushlogs 1>/dev/null || true
|
||||
Loading…
Reference in New Issue