New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fail2ban: 0.10.5 -> 0.11.1 #67931
fail2ban: 0.10.5 -> 0.11.1 #67931
Conversation
2d85982
to
5773fee
Compare
This seems to be an development version of fail2ban. I am not quite sure we need this in nixpkgs given the stable version is actively maintained: https://github.com/fail2ban/fail2ban/releases |
@Mic92 fail2ban-0.11 need to use new feature bantime-increment. Version 0.10 not supported this feature. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thank you, these fixes will be useful. Please convince upstream to release 0.11 so we can proceed with merging this :). In the meantime I have provided some comments and nitpicks.
@yorickvP thanks, updated PR. |
6afdb4a
to
1d31126
Compare
464eaba
to
9f1689c
Compare
Updated and rebased. |
9bb40a9
to
6e37e32
Compare
Updated and rebased |
You bumped it to 0.10, not 0.11? |
I see. I don't think we require 0.10 now? |
Need to keep only one version - 0.11.1? Drop 0.10? |
Yeah, no need to keep 0.10. |
Updated |
fail2ban: 0.10.5 -> 0.11.1
fail2ban: 0.10.5 -> 0.11.1 (cherry picked from commit c23f10d)
Motivation for this change
Update package to version 0.11.1.
Update service configuration and add options bantime-increment.
In PR created symlinks to files:
And all changes are generated to files:
See https://github.com/fail2ban/fail2ban/wiki/Proper-fail2ban-configuration
The result is a configuration example with nftables
Result
fail2ban-client status
nft list chain inet filter input
nft list set inet filter f2b-sshd
Things done
sandbox
innix.conf
on non-NixOS)nix-shell -p nix-review --run "nix-review wip"
./result/bin/
)nix path-info -S
before and after)Notify maintainers
cc @