Date: Mon, 23 Jun 2014 09:27:31 +0200 From: n j <nino80@gmail.com> To: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org> Subject: Re: PAM: Authentication Attack? Message-ID: <CALf6cgaf20kK3Sgvmt0Y-uSxiSiq0TACC13SYNV8gC0smJ8FOA@mail.gmail.com> In-Reply-To: <CANnsUMFV7w0OyMYPJhv2cokFEOzraK-mrhRE-UFmVZc8kuM-XQ@mail.gmail.com> References: <CANnsUMFv06Dot6FDP2Z7enuWcT5ktjJ0BROHkYAnFpEwOmwp2g@mail.gmail.com> <CANnsUMFhpS9KSzVneSd1gi_OqXkb%2BWH6eL1sZ=N9LSDdCLv9Uw@mail.gmail.com> <20140623004117.GA25023@ozzmosis.com> <CANnsUMFV7w0OyMYPJhv2cokFEOzraK-mrhRE-UFmVZc8kuM-XQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jun 23, 2014 at 2:46 AM, Chris Maness <chris@chrismaness.com> wrote: > I tried that, but was not working. It seemed to be some > incompatibility with ipfw, and I figured it might be because I am > running 10.0. Maybe some changes in ipfw broke it. It seemed easier > to set up than using it with pf, but I got it working. I like it > better than denyhost that I had been running forever, as it covers > more types of attacks. > > Thanks, > Chirs KQ6UP > > On Sun, Jun 22, 2014 at 5:41 PM, andrew clarke <mail@ozzmosis.com> wrote: > > On Sun 2014-06-22 08:28:29 UTC-0700, Chris Maness (chris@chrismaness.com) > wrote: > > > >> After digging around I am going to use sshgaurd-pf. Any opinions on > >> this software? > > > > I use its brother, sshguard-ipfw. It works well, although the FreeBSD > > port has a silly habit of disabling itself whenever you upgrade the > > port. > I also use sshguard-ipfw and find it quite useful. The only problem I experienced is that it core dumps on restart if there is a non-empty blacklist (in /var/db/sshguard/blacklist.db). -- Nino
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CALf6cgaf20kK3Sgvmt0Y-uSxiSiq0TACC13SYNV8gC0smJ8FOA>