80 lines
2.7 KiB
Ruby
80 lines
2.7 KiB
Ruby
class Fail2ban < Formula
|
|
desc "Scan log files and ban IPs showing malicious signs"
|
|
homepage "https://www.fail2ban.org/"
|
|
url "https://github.com/fail2ban/fail2ban/archive/0.8.14.tar.gz"
|
|
sha256 "2d579d9f403eb95064781ffb28aca2b258ca55d7a2ba056a8fa2b3e6b79721f2"
|
|
|
|
bottle do
|
|
cellar :any_skip_relocation
|
|
rebuild 1
|
|
sha256 "bbb4f2f3f6b8990a9630d82630174cd62808850f9783bf15ad556759b0b02592" => :sierra
|
|
sha256 "1c546abfdb096457c188bd32f97f95368c9e11e0d9eb0b44172e130083b26205" => :el_capitan
|
|
sha256 "024aff8d53788e55039de105bef04036b97cdde3b62a67a750a5b748f2b5389a" => :yosemite
|
|
sha256 "f39d0f4aa122b1e40ce05ad9010901beefacd560c5d84960eed4448daa3915f2" => :mavericks
|
|
end
|
|
|
|
def install
|
|
rm "setup.cfg"
|
|
inreplace "setup.py" do |s|
|
|
s.gsub! %r{/etc}, etc
|
|
s.gsub! %r{/var}, var
|
|
end
|
|
|
|
# Replace hardcoded paths
|
|
inreplace "fail2ban-client", "/usr/share/fail2ban", libexec
|
|
inreplace "fail2ban-server", "/usr/share/fail2ban", libexec
|
|
inreplace "fail2ban-regex", "/usr/share/fail2ban", libexec
|
|
|
|
inreplace "fail2ban-client", "/etc", etc
|
|
inreplace "fail2ban-regex", "/etc", etc
|
|
|
|
inreplace "fail2ban-server", "/var", var
|
|
inreplace "config/fail2ban.conf", "/var/run", (var/"run")
|
|
|
|
inreplace "setup.py", "/usr/share/doc/fail2ban", (libexec/"doc")
|
|
|
|
system "python", "setup.py", "install", "--prefix=#{prefix}", "--install-lib=#{libexec}"
|
|
end
|
|
|
|
def caveats
|
|
<<-EOS.undent
|
|
Before using Fail2Ban for the first time you should edit jail
|
|
configuration and enable the jails that you want to use, for instance
|
|
ssh-ipfw. Also make sure that they point to the correct configuration
|
|
path. I.e. on Mountain Lion the sshd logfile should point to
|
|
/var/log/system.log.
|
|
|
|
* #{etc}/fail2ban/jail.conf
|
|
|
|
The Fail2Ban wiki has two pages with instructions for macOS Server that
|
|
describes how to set up the Jails for the standard macOS Server
|
|
services for the respective releases.
|
|
|
|
10.4: https://www.fail2ban.org/wiki/index.php/HOWTO_Mac_OS_X_Server_(10.4)
|
|
10.5: https://www.fail2ban.org/wiki/index.php/HOWTO_Mac_OS_X_Server_(10.5)
|
|
EOS
|
|
end
|
|
|
|
plist_options :startup => true
|
|
|
|
def plist; <<-EOS.undent
|
|
<?xml version="1.0" encoding="UTF-8"?>
|
|
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
|
|
<plist version="1.0">
|
|
<dict>
|
|
<key>Label</key>
|
|
<string>#{plist_name}</string>
|
|
<key>ProgramArguments</key>
|
|
<array>
|
|
<string>#{opt_bin}/fail2ban-client</string>
|
|
<string>-x</string>
|
|
<string>start</string>
|
|
</array>
|
|
<key>RunAtLoad</key>
|
|
<true/>
|
|
</dict>
|
|
</plist>
|
|
EOS
|
|
end
|
|
end
|