diff options
Diffstat (limited to 'app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch')
-rw-r--r-- | app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch b/app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch new file mode 100644 index 000000000000..c6fc20541019 --- /dev/null +++ b/app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch @@ -0,0 +1,21 @@ +Address Log injection reported at + +http://bugs.gentoo.org/show_bug.cgi?id=181213 + +diff -ur a/DenyHosts/regex.py b/DenyHosts/regex.py +--- a/DenyHosts/regex.py 2006-12-07 13:47:04.000000000 -0600 ++++ b/DenyHosts/regex.py 2007-06-19 18:51:54.000000000 -0500 +@@ -17,11 +17,11 @@ + + FAILED_ENTRY_REGEX4 = re.compile(r"""Authentication failure for (?P<user>.*) .*from (?P<host>.*)""") + +-FAILED_ENTRY_REGEX5 = re.compile(r"""User (?P<user>.*) .*from (?P<host>.*) not allowed because none of user's groups are listed in AllowGroups""") ++FAILED_ENTRY_REGEX5 = re.compile(r"""User (?P<user>.*) .*from (?P<host>.*) not allowed because none of user's groups are listed in AllowGroups$""") + + FAILED_ENTRY_REGEX6 = re.compile(r"""Did not receive identification string .*from (::ffff:)?(?P<host>\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})""") + +-FAILED_ENTRY_REGEX7 = re.compile(r"""User (?P<user>.*) not allowed because not listed in AllowUsers""") ++FAILED_ENTRY_REGEX7 = re.compile(r"""User (?P<user>.*) .*from (::ffff:)?(?P<host>\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}) not allowed because not listed in AllowUsers""") + + + # these are reserved for future versions |