homebrew-core/Formula/fail2ban.rb
2017-03-16 23:37:14 +01:00

79 lines
2.7 KiB
Ruby

class Fail2ban < Formula
desc "Scan log files and ban IPs showing malicious signs"
homepage "https://www.fail2ban.org/"
url "https://github.com/fail2ban/fail2ban/archive/0.8.14.tar.gz"
sha256 "2d579d9f403eb95064781ffb28aca2b258ca55d7a2ba056a8fa2b3e6b79721f2"
bottle do
cellar :any_skip_relocation
rebuild 1
sha256 "bbb4f2f3f6b8990a9630d82630174cd62808850f9783bf15ad556759b0b02592" => :sierra
sha256 "1c546abfdb096457c188bd32f97f95368c9e11e0d9eb0b44172e130083b26205" => :el_capitan
sha256 "024aff8d53788e55039de105bef04036b97cdde3b62a67a750a5b748f2b5389a" => :yosemite
sha256 "f39d0f4aa122b1e40ce05ad9010901beefacd560c5d84960eed4448daa3915f2" => :mavericks
end
def install
rm "setup.cfg"
inreplace "setup.py" do |s|
s.gsub! %r{/etc}, etc
s.gsub! %r{/var}, var
end
# Replace hardcoded paths
inreplace "fail2ban-client", "/usr/share/fail2ban", libexec
inreplace "fail2ban-server", "/usr/share/fail2ban", libexec
inreplace "fail2ban-regex", "/usr/share/fail2ban", libexec
inreplace "fail2ban-client", "/etc", etc
inreplace "fail2ban-regex", "/etc", etc
inreplace "fail2ban-server", "/var", var
inreplace "config/fail2ban.conf", "/var/run", (var/"run")
inreplace "setup.py", "/usr/share/doc/fail2ban", (libexec/"doc")
system "python", "setup.py", "install", "--prefix=#{prefix}", "--install-lib=#{libexec}"
end
def caveats
<<-EOS.undent
Before using Fail2Ban for the first time you should edit jail
configuration and enable the jails that you want to use, for instance
ssh-ipfw. Also make sure that they point to the correct configuration
path. I.e. on Mountain Lion the sshd logfile should point to
/var/log/system.log.
* #{etc}/fail2ban/jail.conf
The Fail2Ban wiki has two pages with instructions for macOS Server that
describes how to set up the Jails for the standard macOS Server
services for the respective releases.
10.4: https://www.fail2ban.org/wiki/index.php/HOWTO_Mac_OS_X_Server_(10.4)
10.5: https://www.fail2ban.org/wiki/index.php/HOWTO_Mac_OS_X_Server_(10.5)
EOS
end
plist_options :startup => true
def plist; <<-EOS.undent
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>Label</key>
<string>#{plist_name}</string>
<key>ProgramArguments</key>
<array>
<string>#{opt_bin}/fail2ban-client</string>
<string>-x</string>
<string>start</string>
</array>
<key>RunAtLoad</key>
<true/>
</dict>
</plist>
EOS
end
end