Subject: fail2ban: update badips action to use https (now supported)
Package: fail2ban
Version: 0.8.13-1
Severity: normal
Tags: patch
Dear Maintainer,
* What led up to the situation? Badips.com now supports https on the API
* What exactly did you do (or not do) that was effective (or
ineffective)? Changed the urls in the action conf to use https
* What was the outcome of this action? Action now happens over SSL
* What outcome did you expect instead? NA
-- System Information:
Debian Release: 8.2
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages fail2ban depends on:
ii lsb-base4.1+Debian13+nmu1
pn python:any
Versions of packages fail2ban recommends:
ii iptables 1.4.21-2+b1
ii python-pyinotify 0.9.4-1
ii whois 5.2.7
Versions of packages fail2ban suggests:
ii bsd-mailx [mailx]8.1.2-0.20141216cvs-2
pn python-gamin
ii rsyslog [system-log-daemon] 8.4.2-1+deb8u1
-- Configuration Files:
/etc/fail2ban/action.d/badips.conf changed [not included]
/etc/fail2ban/action.d/blocklist_de.conf changed [not included]
/etc/fail2ban/jail.conf changed [not included]
-- no debconf information
Report will be sent to "Debian Bug Tracking System"
--
Justin Paglierani, Associate of (ISC)² working toward CISSP
(623) 999-6465
jpagl...@asu.edu
9c9
< # http://www.badips.com/blog/personalized-statistics-track-the-attackers-of-all-your-servers-with-one-key
---
> # https://www.badips.com/blog/personalized-statistics-track-the-attackers-of-all-your-servers-with-one-key
13c13
< actionban = curl --fail --user-agent "fail2ban v0.8.12" http://www.badips.com/add//
---
> actionban = curl --fail --user-agent "fail2ban v0.8.12" https://www.badips.com/add//
18c18
< # Notes.: Values are from the list here: http://www.badips.com/get/categories
---
> # Notes.: Values are from the list here: https://www.badips.com/get/categories