Fail2ban-999999999 added.

This commit is contained in:
Kolan Sh 2015-10-03 12:45:47 +03:00
parent c5ffe738cb
commit ef1b5cca40
3 changed files with 144 additions and 0 deletions

View File

@ -0,0 +1,107 @@
# Copyright 1999-2015 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Id$
EAPI=5
PYTHON_COMPAT=( python{2_7,3_3,3_4} pypy )
DISTUTILS_SINGLE_IMPL=1
inherit distutils-r1 eutils git-r3 systemd vcs-snapshot
DESCRIPTION="scans log files and bans IPs that show malicious signs"
HOMEPAGE="http://www.fail2ban.org/"
EGIT_REPO_URI="https://github.com/${PN}/${PN}/"
LICENSE="GPL-2"
SLOT="0"
KEYWORDS=""
IUSE="selinux systemd"
RDEPEND="
net-firewall/iptables
net-misc/whois
virtual/logger
virtual/mta
selinux? ( sec-policy/selinux-fail2ban )
systemd? ( $(python_gen_cond_dep '|| (
dev-python/python-systemd[${PYTHON_USEDEP}]
sys-apps/systemd[python(-),${PYTHON_USEDEP}]
)' 'python*' ) )
"
DOCS=( ChangeLog DEVELOP README.md THANKS TODO doc/run-rootless.txt )
src_unpack() {
git-r3_src_unpack
}
src_prepare() {
# Replace /var/run with /run, but not in the top source directory
sed -i -e 's|/var\(/run/fail2ban\)|\1|g' $( find . -type f -mindepth 2 ) || die
# Fix bashisms and do not direct useful output to /dev/null (bug #536320)
# Remove global logrotate settings (bug #549856)
epatch \
"${FILESDIR}"/${PN}-0.9.2-initd.patch \
"${FILESDIR}"/${PN}-0.9.2-logrotate.patch
distutils-r1_src_prepare
}
python_test() {
${EPYTHON} bin/${PN}-testcases
}
src_install() {
distutils-r1_src_install
rm -rf "${D}"/usr/share/doc/${PN}
# not FILESDIR
newconfd files/gentoo-confd ${PN}
newinitd files/gentoo-initd ${PN}
systemd_dounit files/${PN}.service
systemd_dotmpfilesd files/${PN}-tmpfiles.conf
doman man/*.{1,5}
# Use INSTALL_MASK if you do not want to touch /etc/logrotate.d.
# See http://thread.gmane.org/gmane.linux.gentoo.devel/35675
insinto /etc/logrotate.d
newins files/${PN}-logrotate ${PN}
}
pkg_preinst() {
has_version "<${CATEGORY}/${PN}-0.7"
previous_less_than_0_7=$?
}
pkg_postinst() {
if [[ $previous_less_than_0_7 = 0 ]] ; then
elog
elog "Configuration files are now in /etc/fail2ban/"
elog "You probably have to manually update your configuration"
elog "files before restarting Fail2ban!"
elog
elog "Fail2ban is not installed under /usr/lib anymore. The"
elog "new location is under /usr/share."
elog
elog "You are upgrading from version 0.6.x, please see:"
elog "http://www.fail2ban.org/wiki/index.php/HOWTO_Upgrade_from_0.6_to_0.8"
fi
if ! has_version ${CATEGORY}/${PN}; then
if ! has_version dev-python/pyinotify && ! has_version app-admin/gamin; then
elog "For most jail.conf configurations, it is recommended you install either"
elog "dev-python/pyinotify or app-admin/gamin (in order of preference)"
elog "to control how log file modifications are detected"
fi
if ! has_version dev-lang/python[sqlite]; then
elog "If you want to use ${PN}'s persistent database, then reinstall"
elog "dev-lang/python with USE=sqlite"
fi
if has_version sys-apps/systemd[-python]; then
elog "If you want to track logins through sys-apps/systemd's"
elog "journal backend, then reinstall sys-apps/systemd with USE=python"
fi
fi
}

View File

@ -0,0 +1,25 @@
--- a/files/gentoo-initd
+++ b/files/gentoo-initd
@@ -38,19 +38,19 @@
# bug 347477
rm -rf /run/fail2ban/fail2ban.sock || return 1
fi
- ${FAIL2BAN} start &> /dev/null
+ ${FAIL2BAN} start
eend $? "Failed to start fail2ban"
}
stop() {
ebegin "Stopping fail2ban"
- ${FAIL2BAN} stop &> /dev/null
+ ${FAIL2BAN} stop
eend $? "Failed to stop fail2ban"
}
reload() {
ebegin "Reloading fail2ban"
- ${FAIL2BAN} reload > /dev/null
+ ${FAIL2BAN} reload
eend $? "Failed to reload fail2ban"
}

View File

@ -0,0 +1,12 @@
--- a/files/fail2ban-logrotate
+++ b/files/fail2ban-logrotate
@@ -9,9 +9,7 @@
# http://pkgs.fedoraproject.org/cgit/fail2ban.git/tree/fail2ban-logrotate
/var/log/fail2ban.log {
- rotate 7
missingok
notifempty
- compress
postrotate
/usr/bin/fail2ban-client flushlogs 1>/dev/null || true