File denyhosts.changes of Package denyhosts
-------------------------------------------------------------------
Sat Aug 11 19:57:36 UTC 2018 - javier@opensuse.org
- Update to 3.1
+ Fixes a bug when moving between Python 2 and Python 3
environments
+ A new check has been added to confirm IP addresses retrieved
from the security log are valid
+ DenyHosts will now (optionally) check for break-in attacks
against IMAP services such as Dovecot.
+ A new dependency has been added, the Python ipaddr library
is now a run-time requirement
-------------------------------------------------------------------
Mon Jul 2 22:27:45 UTC 2018 - javier@opensuse.org
- Fix path to binary in service file
-------------------------------------------------------------------
Mon Mar 12 12:19:06 UTC 2018 - lars@linux-schulserver.de
- update to 3.0
+ Initial translation of code from Python 2 to Python 3. DenyHosts
can now be run as either a Python 2 or a Python 3 program. The new
code has been tested with Pyhton 2.7 and Python 3.4. If you require
an older version of Python, please continue to use DenyHosts 2.10
and let us know of your requirements.
+ Added patch from Fedora to fix initial sync issue and insure info
logging stream is active. (Provided by Jason Tibbitts.)
+ Added "import logging" to denyhosts.py to avoid errors when setting
up logging. (See above change.)
+ Added option PF_TABLE_FILE to the configuration file. When this option
is enabled it causes DenyHosts to write blocked IP addresses to a text
file.
The default location is /etc/blacklist. This text file should correspond
to a PF firewall table.
+ At start-up, try to create the file specified by HOSTS_DENY. That
way we avoid errors later if the file does not exists. Can be a
problem on operating systems where /etc/hosts.deny does not exist
in the default configuration.
+ Added regex pattern to detect invalid user accounts. This blocks
connections from remote hosts who are attempting to login with
accounts not found on the local system. While these connections to
non-existent accounts are relatively harmless, they are usually used
as part of a brute force attack and filtering them before they
reach OpenSSH is a good idea.
+ Finally, Jan-Pascal has created a sync server for DenyHosts which
will allow DenyHosts services to coordinate lists of banned IP addresses.
The new sync server is open source (GPLv3) and can be set up on
private servers, networks and VPS. We plan to set up our own sync
server in the near future. When a sync server is created it will
be announced at http://denyhost.sourceforge.net/news.php
- require rsyslog to fix the not existing systemd journal support
(https://github.com/denyhosts/denyhosts/issues/14) - this resolves
boo#960856 until upstream implemented the feature
- use provided systemd service on newer distributions
- use upstream configuration file instead of own one
- removed ALL patches
-------------------------------------------------------------------
Wed Jan 5 18:12:30 UTC 2011 - tejas.guruswamy@opensuse.org
- Make package noarch on > 11.2
- Run spec-cleaner
-------------------------------------------------------------------
Thu Apr 15 21:15:44 UTC 2010 - lars@linux-schulserver.de
- fix dh_reenable as mentioned in bnc #596354
(thanks to Patrick Shanahan for the patch!)
-------------------------------------------------------------------
Sun Dec 28 16:23:29 CET 2008 - lars@linux-schulserver.de
- added some Debian patches
- enhanced init script
- adapted default denyhosts.conf (which is now located in /etc)
- added README.SuSE
- fix some rpmlint warnings
-------------------------------------------------------------------
Wed Dec 20 21:16:03 CET 2006 - lars@linux-schulserver.de
- initial package 2.6
Thanks to Craig Millar for the logrotate and initial init file.
