Fail2ban-999999999 added.
This commit is contained in:
parent
c5ffe738cb
commit
ef1b5cca40
|
@ -0,0 +1,107 @@
|
||||||
|
# Copyright 1999-2015 Gentoo Foundation
|
||||||
|
# Distributed under the terms of the GNU General Public License v2
|
||||||
|
# $Id$
|
||||||
|
|
||||||
|
EAPI=5
|
||||||
|
PYTHON_COMPAT=( python{2_7,3_3,3_4} pypy )
|
||||||
|
DISTUTILS_SINGLE_IMPL=1
|
||||||
|
|
||||||
|
inherit distutils-r1 eutils git-r3 systemd vcs-snapshot
|
||||||
|
|
||||||
|
DESCRIPTION="scans log files and bans IPs that show malicious signs"
|
||||||
|
HOMEPAGE="http://www.fail2ban.org/"
|
||||||
|
EGIT_REPO_URI="https://github.com/${PN}/${PN}/"
|
||||||
|
|
||||||
|
LICENSE="GPL-2"
|
||||||
|
SLOT="0"
|
||||||
|
KEYWORDS=""
|
||||||
|
IUSE="selinux systemd"
|
||||||
|
|
||||||
|
RDEPEND="
|
||||||
|
net-firewall/iptables
|
||||||
|
net-misc/whois
|
||||||
|
virtual/logger
|
||||||
|
virtual/mta
|
||||||
|
selinux? ( sec-policy/selinux-fail2ban )
|
||||||
|
systemd? ( $(python_gen_cond_dep '|| (
|
||||||
|
dev-python/python-systemd[${PYTHON_USEDEP}]
|
||||||
|
sys-apps/systemd[python(-),${PYTHON_USEDEP}]
|
||||||
|
)' 'python*' ) )
|
||||||
|
"
|
||||||
|
|
||||||
|
DOCS=( ChangeLog DEVELOP README.md THANKS TODO doc/run-rootless.txt )
|
||||||
|
|
||||||
|
src_unpack() {
|
||||||
|
git-r3_src_unpack
|
||||||
|
}
|
||||||
|
|
||||||
|
src_prepare() {
|
||||||
|
# Replace /var/run with /run, but not in the top source directory
|
||||||
|
sed -i -e 's|/var\(/run/fail2ban\)|\1|g' $( find . -type f -mindepth 2 ) || die
|
||||||
|
|
||||||
|
# Fix bashisms and do not direct useful output to /dev/null (bug #536320)
|
||||||
|
# Remove global logrotate settings (bug #549856)
|
||||||
|
epatch \
|
||||||
|
"${FILESDIR}"/${PN}-0.9.2-initd.patch \
|
||||||
|
"${FILESDIR}"/${PN}-0.9.2-logrotate.patch
|
||||||
|
|
||||||
|
distutils-r1_src_prepare
|
||||||
|
}
|
||||||
|
|
||||||
|
python_test() {
|
||||||
|
${EPYTHON} bin/${PN}-testcases
|
||||||
|
}
|
||||||
|
|
||||||
|
src_install() {
|
||||||
|
distutils-r1_src_install
|
||||||
|
|
||||||
|
rm -rf "${D}"/usr/share/doc/${PN}
|
||||||
|
|
||||||
|
# not FILESDIR
|
||||||
|
newconfd files/gentoo-confd ${PN}
|
||||||
|
newinitd files/gentoo-initd ${PN}
|
||||||
|
systemd_dounit files/${PN}.service
|
||||||
|
systemd_dotmpfilesd files/${PN}-tmpfiles.conf
|
||||||
|
doman man/*.{1,5}
|
||||||
|
|
||||||
|
# Use INSTALL_MASK if you do not want to touch /etc/logrotate.d.
|
||||||
|
# See http://thread.gmane.org/gmane.linux.gentoo.devel/35675
|
||||||
|
insinto /etc/logrotate.d
|
||||||
|
newins files/${PN}-logrotate ${PN}
|
||||||
|
}
|
||||||
|
|
||||||
|
pkg_preinst() {
|
||||||
|
has_version "<${CATEGORY}/${PN}-0.7"
|
||||||
|
previous_less_than_0_7=$?
|
||||||
|
}
|
||||||
|
|
||||||
|
pkg_postinst() {
|
||||||
|
if [[ $previous_less_than_0_7 = 0 ]] ; then
|
||||||
|
elog
|
||||||
|
elog "Configuration files are now in /etc/fail2ban/"
|
||||||
|
elog "You probably have to manually update your configuration"
|
||||||
|
elog "files before restarting Fail2ban!"
|
||||||
|
elog
|
||||||
|
elog "Fail2ban is not installed under /usr/lib anymore. The"
|
||||||
|
elog "new location is under /usr/share."
|
||||||
|
elog
|
||||||
|
elog "You are upgrading from version 0.6.x, please see:"
|
||||||
|
elog "http://www.fail2ban.org/wiki/index.php/HOWTO_Upgrade_from_0.6_to_0.8"
|
||||||
|
fi
|
||||||
|
if ! has_version ${CATEGORY}/${PN}; then
|
||||||
|
if ! has_version dev-python/pyinotify && ! has_version app-admin/gamin; then
|
||||||
|
elog "For most jail.conf configurations, it is recommended you install either"
|
||||||
|
elog "dev-python/pyinotify or app-admin/gamin (in order of preference)"
|
||||||
|
elog "to control how log file modifications are detected"
|
||||||
|
fi
|
||||||
|
if ! has_version dev-lang/python[sqlite]; then
|
||||||
|
elog "If you want to use ${PN}'s persistent database, then reinstall"
|
||||||
|
elog "dev-lang/python with USE=sqlite"
|
||||||
|
fi
|
||||||
|
|
||||||
|
if has_version sys-apps/systemd[-python]; then
|
||||||
|
elog "If you want to track logins through sys-apps/systemd's"
|
||||||
|
elog "journal backend, then reinstall sys-apps/systemd with USE=python"
|
||||||
|
fi
|
||||||
|
fi
|
||||||
|
}
|
|
@ -0,0 +1,25 @@
|
||||||
|
--- a/files/gentoo-initd
|
||||||
|
+++ b/files/gentoo-initd
|
||||||
|
@@ -38,19 +38,19 @@
|
||||||
|
# bug 347477
|
||||||
|
rm -rf /run/fail2ban/fail2ban.sock || return 1
|
||||||
|
fi
|
||||||
|
- ${FAIL2BAN} start &> /dev/null
|
||||||
|
+ ${FAIL2BAN} start
|
||||||
|
eend $? "Failed to start fail2ban"
|
||||||
|
}
|
||||||
|
|
||||||
|
stop() {
|
||||||
|
ebegin "Stopping fail2ban"
|
||||||
|
- ${FAIL2BAN} stop &> /dev/null
|
||||||
|
+ ${FAIL2BAN} stop
|
||||||
|
eend $? "Failed to stop fail2ban"
|
||||||
|
}
|
||||||
|
|
||||||
|
reload() {
|
||||||
|
ebegin "Reloading fail2ban"
|
||||||
|
- ${FAIL2BAN} reload > /dev/null
|
||||||
|
+ ${FAIL2BAN} reload
|
||||||
|
eend $? "Failed to reload fail2ban"
|
||||||
|
}
|
||||||
|
|
|
@ -0,0 +1,12 @@
|
||||||
|
--- a/files/fail2ban-logrotate
|
||||||
|
+++ b/files/fail2ban-logrotate
|
||||||
|
@@ -9,9 +9,7 @@
|
||||||
|
# http://pkgs.fedoraproject.org/cgit/fail2ban.git/tree/fail2ban-logrotate
|
||||||
|
|
||||||
|
/var/log/fail2ban.log {
|
||||||
|
- rotate 7
|
||||||
|
missingok
|
||||||
|
notifempty
|
||||||
|
- compress
|
||||||
|
postrotate
|
||||||
|
/usr/bin/fail2ban-client flushlogs 1>/dev/null || true
|
Loading…
Reference in New Issue