FreeBSD Mail Archives

Date:      Tue, 29 May 2018 13:04:05 +0000 (UTC)
From:      Adam Weinberger <adamw@FreeBSD.org>
To:        ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org
Subject:   svn commit: r471092 - in branches/2018Q2/security/sshguard: . files
Message-ID:  <201805291304.w4TD450K021118@repo.freebsd.org>

next in thread | raw e-mail | index | archive | help

Author: adamw
Date: Tue May 29 13:04:05 2018
New Revision: 471092
URL: https://svnweb.freebsd.org/changeset/ports/471092

Log:
  MFH: r471012
  
  Increase the default blacklist threshold from 30 to 120, which is the upstream
  default. 30 makes it far too easy to get locked out of your own server. 120 is
  simply a safer starting point.
  
  PR:		227016
  Submitted by:	Dan McGregor (maintainer)
  
  Approved by:	ports-secteam (feld)

Modified:
  branches/2018Q2/security/sshguard/Makefile
  branches/2018Q2/security/sshguard/files/patch-examples-sshguard.conf.sample
  branches/2018Q2/security/sshguard/files/sshguard.in
Directory Properties:
  branches/2018Q2/   (props changed)

Modified: branches/2018Q2/security/sshguard/Makefile
==============================================================================
--- branches/2018Q2/security/sshguard/Makefile	Tue May 29 12:29:16 2018	(r471091)
+++ branches/2018Q2/security/sshguard/Makefile	Tue May 29 13:04:05 2018	(r471092)
@@ -3,6 +3,7 @@
 
 PORTNAME=	sshguard
 PORTVERSION=	2.1.0
+PORTREVISION=	1
 CATEGORIES=	security
 MASTER_SITES=	SF/sshguard/sshguard/${PORTVERSION}
 

Modified: branches/2018Q2/security/sshguard/files/patch-examples-sshguard.conf.sample
==============================================================================
--- branches/2018Q2/security/sshguard/files/patch-examples-sshguard.conf.sample	Tue May 29 12:29:16 2018	(r471091)
+++ branches/2018Q2/security/sshguard/files/patch-examples-sshguard.conf.sample	Tue May 29 13:04:05 2018	(r471092)
@@ -25,7 +25,7 @@
  # Colon-separated blacklist threshold and full path to blacklist file.
  # (optional, no default)
 -#BLACKLIST_FILE=90:/var/lib/sshguard/enemies
-+#BLACKLIST_FILE=30:/var/db/sshguard/blacklist.db
++#BLACKLIST_FILE=120:/var/db/sshguard/blacklist.db
  
  # IP addresses listed in the WHITELIST_FILE are considered to be
  # friendlies and will never be blocked.

Modified: branches/2018Q2/security/sshguard/files/sshguard.in
==============================================================================
--- branches/2018Q2/security/sshguard/files/sshguard.in	Tue May 29 12:29:16 2018	(r471091)
+++ branches/2018Q2/security/sshguard/files/sshguard.in	Tue May 29 13:04:05 2018	(r471092)
@@ -67,7 +67,7 @@ rcvar=sshguard_enable
 load_rc_config sshguard
 
 : ${sshguard_enable:=NO}
-: ${sshguard_blacklist=30:/var/db/sshguard/blacklist.db}
+: ${sshguard_blacklist=120:/var/db/sshguard/blacklist.db}
 : ${sshguard_danger_thresh=}
 : ${sshguard_release_interval=}
 : ${sshguard_reset_interval=}

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201805291304.w4TD450K021118>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation