{"id":13394812,"url":"https://github.com/fail2ban/fail2ban","last_synced_at":"2025-05-14T07:07:48.186Z","repository":{"id":37550379,"uuid":"2476162","full_name":"fail2ban/fail2ban","owner":"fail2ban","description":"Daemon to ban hosts that cause multiple authentication errors","archived":false,"fork":false,"pushed_at":"2025-05-06T00:18:40.000Z","size":13222,"stargazers_count":14105,"open_issues_count":246,"forks_count":1314,"subscribers_count":255,"default_branch":"master","last_synced_at":"2025-05-07T06:59:30.808Z","etag":null,"topics":["anti-bot","attack-prevention","ban-hosts","ban-management","bsd","fail2ban","gplv2","hids","ids","intrusion-detection","intrusion-prevention","ips","linux","loganalyzer","macos","monitoring","python","security","security-tools"],"latest_commit_sha":null,"homepage":"http://www.fail2ban.org","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/fail2ban.png","metadata":{"files":{"readme":"README.Solaris","changelog":"ChangeLog","contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"COPYING","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null},"funding":{"github":["sebres"],"custom":["https://paypal.me/sebres"],"liberapay":"sebres"}},"created_at":"2011-09-28T16:24:20.000Z","updated_at":"2025-05-07T06:53:40.000Z","dependencies_parsed_at":"2022-08-08T20:31:10.593Z","dependency_job_id":"e030497c-ef6a-413c-9c94-f25a011af7c8","html_url":"https://github.com/fail2ban/fail2ban","commit_stats":{"total_commits":4619,"total_committers":276,"mean_commits":"16.735507246376812","dds":0.6754708811431045,"last_synced_commit":"a6ca6e2a26b579c5d65049070ac81c298719bba9"},"previous_names":[],"tags_count":229,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fail2ban%2Ffail2ban","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fail2ban%2Ffail2ban/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fail2ban%2Ffail2ban/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fail2ban%2Ffail2ban/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/fail2ban","download_url":"https://codeload.github.com/fail2ban/fail2ban/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253919635,"owners_count":21984264,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["anti-bot","attack-prevention","ban-hosts","ban-management","bsd","fail2ban","gplv2","hids","ids","intrusion-detection","intrusion-prevention","ips","linux","loganalyzer","macos","monitoring","python","security","security-tools"],"created_at":"2024-07-30T17:01:32.475Z","updated_at":"2025-05-14T07:07:48.162Z","avatar_url":"https://github.com/fail2ban.png","language":"Python","readme":"# vim:tw=80:ft=txt\n\nREADME FOR SOLARIS INSTALLATIONS\n\nBy Roy Sigurd Karlsbakk \u003croy@karlsbakk.net\u003e\n\nABOUT\n\nThis README is meant for those wanting to install fail2ban on Solaris 10,\nOpenSolaris, OpenIndiana etc. To some degree it may as well be useful for\nusers of older Solaris versions and Nexenta, but don't rely on it.\n\nREAD ME FIRST\n\nIf I use the term Solaris, I am talking about any Solaris dialect, that is, the\nofficial Sun/Oracle ones or derivatives. If I describe an OS as\n\"OpenSolaris-based\", it means it's either OpenSolaris, OpenIndiana or one of the\nother, but /not/ the Nexenta family, since this only uses the OpenSolaris/\nIllumOS kernel and not the userland. If I say Solaris 10, I mean Solaris 10 and\nperhaps, if you're lucky and have some good gods on your side, it may also apply\nto Solaris 9 or even 8 and hopefully in the new Solaris 11 whenever that may be\nreleased. Quoted lines of code, settings etc. are indented with two spaces.\nThis does _not_ mean you should use that indentation, especially in config files\nwhere they can be harmful. Optional settings are prefixed with OPT: while\nrequired settings are prefixed with REQ:. If no prefix is found, regard it as a\nrequired setting.\n\nINSTALLATION ON SOLARIS\n\nThe installation is straight forward on Solaris as well as on linux/bsd/etc.\n./setup.py install installs the general packages in /usr/bin on OpenSolaris-\nbased distros or (at least on this box) under /usr/sfw/bin on Solaris 10. In\nthe files/ directory you will find the file solaris-fail2ban.xml containing the\nSolaris service. To install this, run the following command as root (or with\nsudo):\n\n  svccfg import files/solaris-fail2ban.xml\n\nThis should normally without giving an error. If you get an error, deal with it,\nand please post any relevant info (or fixes?) to the fail2ban mailing list.\nNext install the service handler - copy the script in and allow it to be executed:\n\n  cp files/solaris-svc-fail2ban /lib/svc/method/svc-fail2ban\n  chmod +x /lib/svc/method/svc-fail2ban\n\nCONFIGURE SYSLOG\n\nFor some reason, a default Solaris installation does not log ssh login attempts,\nand since fail2ban works by monitoring logs, enabling this logging is rather\nimportant for it to work. To enable this, edit /etc/syslog.conf and add a line\nat the end:\n\n  auth.info\t\t\t\t\t/var/adm/auth.log\n\nSave the file and exit, and run\n\n  touch /var/adm/auth.log\n\nThe Solaris system logger will _not_ create a non-existing file. Now, restart\nthe system logger.\n\n  svcadm restart system-log\n\nTry to ssh into localhost with ssh asdf@localhost and enter an invalid password.\nMake sure this is logged in the above file. When done, you may configure\nfail2ban.\n\nFAIL2BAN CONFIGURATION\n\nOPT: Create /etc/fail2ban/fail2ban.local containing:\n\n# Fail2Ban configuration file for logging fail2ban on Solaris\n#\n[Definition]\n\nlogtarget = /var/adm/fail2ban.log\n\n\nREQ: Create /etc/fail2ban/jail.local containing:\n\n[ssh-tcpwrapper]\n\nenabled     = true\nfilter      = sshd\naction      = hostsdeny[daemon_list=sshd]\n              sendmail-whois[name=SSH, dest=you@example.com]\nignoreregex = for myuser from\nlogpath     = /var/adm/auth.log\n\nSet the sendmail dest address to something useful or drop the line to stop it spamming you.\nSet 'myuser' to your username to avoid banning yourself or remove the line.\n\nSTART (OR RESTART) FAIL2BAN\n\nEnable the fail2ban service with\n\n  svcadm enable fail2ban\n\nWhen done, check that all services are running well\n\n  svcs -xv\n\nGOTCHAS AND FIXMES\n\n* It seems the installation may be starting fail2ban automatically. If this is\n  done, fail2ban will not start, but no errors will be returned from svcs\n  (above). Check if it's running with 'ps -ef | grep fail2ban' and manually kill\n  the PID if it is. Re-enable fail2ban and try again\n\n    svcadm disable fail2ban\n    svcadm enable fail2ban\n\n* If svcs -xv says that fail2ban failed to start or svcs says it's in maintenance mode\n  check /var/svc/log/network-fail2ban:default.log for clues.\n  Check permissions on /var/adm, /var/adm/auth.log /var/adm/fail2ban.log and /var/run/fail2ban\n  You may need to:\n\n  sudo mkdir /var/run/fail2ban\n\n* Fail2ban adds lines like these to /etc/hosts.deny:\n\n    sshd: 1.2.3.4\n","funding_links":["https://github.com/sponsors/sebres","https://paypal.me/sebres","https://liberapay.com/sebres"],"categories":["Python","\u003ca id=\"tag-dev\" href=\"#tag-dev\"\u003eDev\u003c/a\u003e","Daily List","Applications","Security","By Industry","Ports and Programs","Uncategorized","加密、密码破解、字典","Infrastructure Tooling","Application Recommendation","System","security"],"sub_categories":["\u003ca id=\"tag-dev.ops\" href=\"#tag-dev.ops\"\u003eOps\u003c/a\u003e","General Use","Security","Sensor and Acuator Interfaces","Uncategorized","网络服务_其他","🔒 Cybersecurity"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffail2ban%2Ffail2ban","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ffail2ban%2Ffail2ban","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffail2ban%2Ffail2ban/lists"}