Skip to content

feat: add more fail2ban matches #2020

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
staaldraad wants to merge 2 commits into
base: develop
Choose a base branch
from
Open

feat: add more fail2ban matches #2020

staaldraad wants to merge 2 commits into from
+5 −0

Conversation

@staaldraad
Copy link
Member

@staaldraad staaldraad commented Jan 27, 2026
edited by coderabbitai bot
Loading

Summary by CodeRabbit

  • New Features
    • Enhanced detection of pgbouncer authentication and login failures in security monitoring, including improved error pattern recognition for user authentication issues, pooler errors, and database login failures.

✏️ Tip: You can customize this high-level summary in your review settings.

@staaldraad staaldraad requested review from a team as code owners January 27, 2026 16:36
@coderabbitai
Copy link
Contributor

coderabbitai bot commented Jan 27, 2026
edited
Loading

Walkthrough

This change updates the pgbouncer fail2ban filter configuration template by adding an Init section with a maxlines constraint and three new failregex patterns to detect password authentication failures, missing user errors, and database validation failures in pgbouncer logs.

Changes

Cohort / File(s) Summary
Fail2ban pgbouncer filter configuration
ansible/files/fail2ban_config/filter-pgbouncer.conf.j2		 Added Init section with maxlines = 3 and three new failregex patterns for detecting pgbouncer authentication errors (password failures, missing users, database validation failures). Existing journalmatch targeting pgbouncer.service unchanged.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

🚥 Pre-merge checks | ✅ 2 | ❌ 1
❌ Failed checks (1 warning)
Check name Status Explanation Resolution
Description check ⚠️ Warning No pull request description was provided by the author, but the description template indicates required sections should be filled out. Add a detailed pull request description following the repository template, explaining the purpose of the new fail2ban matches and which errors they address.
✅ Passed checks (2 passed)
Check name Status Explanation
Title check ✅ Passed The title 'feat: add more fail2ban matches' is directly related to the changeset, which adds new failregex patterns to a fail2ban filter configuration file.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@samrose samrose enabled auto-merge January 27, 2026 17:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@samrose samrose samrose approved these changes

@hunleyd hunleyd hunleyd approved these changes

@Crispy1975 Crispy1975 Crispy1975 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@staaldraad @samrose @hunleyd @Crispy1975