From owner-svn-ports-branches@freebsd.org  Tue May 29 13:04:06 2018
Return-Path: <owner-svn-ports-branches@freebsd.org>
Delivered-To: svn-ports-branches@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8F01FF7B1A3;
 Tue, 29 May 2018 13:04:06 +0000 (UTC)
 (envelope-from adamw@FreeBSD.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org
 [IPv6:2610:1c1:1:606c::19:3])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "mxrelay.nyi.freebsd.org",
 Issuer "Let's Encrypt Authority X3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 3BBDE69445;
 Tue, 29 May 2018 13:04:06 +0000 (UTC)
 (envelope-from adamw@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 1CFEF1C575;
 Tue, 29 May 2018 13:04:06 +0000 (UTC)
 (envelope-from adamw@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id w4TD45Ea021121;
 Tue, 29 May 2018 13:04:05 GMT (envelope-from adamw@FreeBSD.org)
Received: (from adamw@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id w4TD450K021118;
 Tue, 29 May 2018 13:04:05 GMT (envelope-from adamw@FreeBSD.org)
Message-Id: <201805291304.w4TD450K021118@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: adamw set sender to
 adamw@FreeBSD.org using -f
From: Adam Weinberger <adamw@FreeBSD.org>
Date: Tue, 29 May 2018 13:04:05 +0000 (UTC)
To: ports-committers@freebsd.org, svn-ports-all@freebsd.org,
 svn-ports-branches@freebsd.org
Subject: svn commit: r471092 - in branches/2018Q2/security/sshguard: . files
X-SVN-Group: ports-branches
X-SVN-Commit-Author: adamw
X-SVN-Commit-Paths: in branches/2018Q2/security/sshguard: . files
X-SVN-Commit-Revision: 471092
X-SVN-Commit-Repository: ports
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-ports-branches@freebsd.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: SVN commit messages for all the branches of the ports tree
 <svn-ports-branches.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-ports-branches>, 
 <mailto:svn-ports-branches-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-ports-branches/>
List-Post: <mailto:svn-ports-branches@freebsd.org>
List-Help: <mailto:svn-ports-branches-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-ports-branches>, 
 <mailto:svn-ports-branches-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 29 May 2018 13:04:06 -0000

Author: adamw
Date: Tue May 29 13:04:05 2018
New Revision: 471092
URL: https://svnweb.freebsd.org/changeset/ports/471092

Log:
  MFH: r471012
  
  Increase the default blacklist threshold from 30 to 120, which is the upstream
  default. 30 makes it far too easy to get locked out of your own server. 120 is
  simply a safer starting point.
  
  PR:		227016
  Submitted by:	Dan McGregor (maintainer)
  
  Approved by:	ports-secteam (feld)

Modified:
  branches/2018Q2/security/sshguard/Makefile
  branches/2018Q2/security/sshguard/files/patch-examples-sshguard.conf.sample
  branches/2018Q2/security/sshguard/files/sshguard.in
Directory Properties:
  branches/2018Q2/   (props changed)

Modified: branches/2018Q2/security/sshguard/Makefile
==============================================================================
--- branches/2018Q2/security/sshguard/Makefile	Tue May 29 12:29:16 2018	(r471091)
+++ branches/2018Q2/security/sshguard/Makefile	Tue May 29 13:04:05 2018	(r471092)
@@ -3,6 +3,7 @@
 
 PORTNAME=	sshguard
 PORTVERSION=	2.1.0
+PORTREVISION=	1
 CATEGORIES=	security
 MASTER_SITES=	SF/sshguard/sshguard/${PORTVERSION}
 

Modified: branches/2018Q2/security/sshguard/files/patch-examples-sshguard.conf.sample
==============================================================================
--- branches/2018Q2/security/sshguard/files/patch-examples-sshguard.conf.sample	Tue May 29 12:29:16 2018	(r471091)
+++ branches/2018Q2/security/sshguard/files/patch-examples-sshguard.conf.sample	Tue May 29 13:04:05 2018	(r471092)
@@ -25,7 +25,7 @@
  # Colon-separated blacklist threshold and full path to blacklist file.
  # (optional, no default)
 -#BLACKLIST_FILE=90:/var/lib/sshguard/enemies
-+#BLACKLIST_FILE=30:/var/db/sshguard/blacklist.db
++#BLACKLIST_FILE=120:/var/db/sshguard/blacklist.db
  
  # IP addresses listed in the WHITELIST_FILE are considered to be
  # friendlies and will never be blocked.

Modified: branches/2018Q2/security/sshguard/files/sshguard.in
==============================================================================
--- branches/2018Q2/security/sshguard/files/sshguard.in	Tue May 29 12:29:16 2018	(r471091)
+++ branches/2018Q2/security/sshguard/files/sshguard.in	Tue May 29 13:04:05 2018	(r471092)
@@ -67,7 +67,7 @@ rcvar=sshguard_enable
 load_rc_config sshguard
 
 : ${sshguard_enable:=NO}
-: ${sshguard_blacklist=30:/var/db/sshguard/blacklist.db}
+: ${sshguard_blacklist=120:/var/db/sshguard/blacklist.db}
 : ${sshguard_danger_thresh=}
 : ${sshguard_release_interval=}
 : ${sshguard_reset_interval=}