Difference between revisions of "Features"
From Fail2ban
Lostcontrol (Talk | contribs) m (→Updated) |
Lostcontrol (Talk | contribs) (→Rewrite communication) |
||
| Line 22: | Line 22: | ||
* Dependency back to Python 2.3 [[Image:okay.gif|done]] | * Dependency back to Python 2.3 [[Image:okay.gif|done]] | ||
| − | * Rewrite communication | + | * Rewrite communication [[Image:okay.gif|done]] |
* Add more tags (<LINE>, <USER>) | * Add more tags (<LINE>, <USER>) | ||
* Add support for pyinotify | * Add support for pyinotify | ||
Revision as of 22:22, 10 September 2007
Current features (0.8.x)
Here is a list of the main features available in Fail2ban.
- Client/Server architecture.
- Multi-threaded.
- Highly configurable.
- FAM/Gamin support.
- Parses log files and looks for given patterns.
- Executes commands when a pattern has been detected for the same IP address for more than X times. X can be changed.
- After a given amount of time, executes another command in order to unban the IP address.
- Uses Netfilter/Iptables by default but can also use TCP Wrapper (/etc/hosts.deny) and many other actions.
- Handles log files rotation.
- Can handle more than one service (sshd, apache, vsftpd, etc).
- Resolves DNS hostname to IP address.
Roadmap
Here is the planned roadmap. If you want to contribute or help on one of these features, please contact the author.
0.9.0
- Dependency back to Python 2.3
- Rewrite communication
- Add more tags (<LINE>, <USER>)
- Add support for pyinotify
- Decrease memory usage
- Multi-lines parsing
- Manual control of ban list (ban, unban, reset)
- Auto-enable feature (activate jail if log file is present)
