summaryrefslogtreecommitdiff
path: root/gnu/services/security.scm
AgeCommit message (Collapse)Author
2023-01-10gnu: services: Fix fail2ban configuration serialization.muradm
This fixes a regression from 543d971ed2a1d9eb934af1f51930741d7cc4e7ef whereby match-lambda due to configuration field reordering. * gnu/services/security.scm: [serialize-fail2ban-ignore-cache-configuration]: Switch to match-record. [serialize-fail2ban-jail-filter-configuration]: Switch to match-record. [serialize-fail2ban-jail-action-configuration]: Switch to match-record. Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
2022-12-06services: fail2ban: Start server in the foreground.Ludovic Courtès
Previously, we were passing '-b', thereby starting the server in the background. Consequently the 'start' method could complete before the server was ready to accept connections on its socket, leading to non-deterministic test failures. Reported by Mathieu Othacehe <othacehe@gnu.org>. * gnu/services/security.scm (fail2ban-shepherd-service): Change FAIL2BAN-ACTION to invoke 'fail2ban-client'. Change 'start' method to use 'make-forkexec-constructor'; start the server in the foreground with '-f' and pass '-x' to force execution of the server, as done upstream in 'fail2ban.service.in'.
2022-12-06services: fail2ban: Remove unnecessary Shepherd 'modules' field.Ludovic Courtès
* gnu/services/security.scm (fail2ban-shepherd-service): Remove unnecessary 'modules' field.
2022-12-06services: fail2ban: 'stop' returns #f when the dameon is stopped.Ludovic Courtès
* gnu/services/security.scm (fail2ban-shepherd-service): Change FAIL2BAN-ACTION to return an 'invoke' gexp. Adjust the shepherd 'start' and 'stop' fields accordingly. Have 'stop' return #f on success.
2022-09-14gnu: fail2ban-service-type: Improve extra-content fields.muradm
* gnu/services/security.scm (fail2ban-jail-configuration)[extra-content]: Change to text-config. (fail2ban-configuration)[extra-content]: Change to text-config. * gnu/doc/guix.texi: Update type of extra-content fields. Modified-by: Maxim Cournoyer <maxim.cournoyer@gmail.com> Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
2022-09-01gnu: fail2ban-service-type: Fix documentation typos.muradm
Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
2022-09-01gnu: fail2ban-service-type: Improve jail configuration serialization.muradm
* gnu/services/security.scm (fail2ban-jail-configuration) [name]: Should use empty-serializer. Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
2022-09-01gnu: fail2ban-service-type: Fix field name serialization.muradm
* gnu/services/security.scm: Wrong condition in string-filter function in fail2ban-jail-configuration-serialize-field-name. Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
2022-08-28gnu: security: Add fail2ban-service-type.muradm
* gnu/services/security.scm: New module. * gnu/tests/security.scm: New module. * gnu/local.mk: Add new security module and tests. * doc/guix.text: Add fail2ban-service-type documentation. Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
generated by cgit v1.2.3 (git 2.46.0) at 2024-08-25 14:22:07 +0000