Date: Fri, 23 Nov 2012 21:05:47 +0400 From: Boris Samorodov <bsam@passap.ru> To: freebsd-ports@freebsd.org, mij@bitchx.it Subject: [security/sshguard] Are default intervals toggled? Message-ID: <50AFACEB.7000607@passap.ru>
next in thread | raw e-mail | index | archive | help
Hi All,
there are two valuse at the port's RC script:
-----
# sshguard_pardon_min_interval (int):
# Minimum pardon interval. Set to "1200"
# by default.
# sshguard_prescribe_interval (int):
# Prescribe interval. Set to "420" by
# default.
-----
This seems to contradict with the man and sources:
-----
/* default: minimum seconds after which unblocking a blocked IP. Max is
(min*3/2) */
#define DEFAULT_PARDON_THRESHOLD (7 * 60)
/* default seconds after which forgiving a cracker candidate */
#define DEFAULT_STALE_THRESHOLD (20 * 60)
-----
The man page:
-----
-p secs release a blocked address no sooner than secs seconds after
being blocked for the first time. sshguard will release the
address between X and 3/2 * X seconds after blocking it.
(Default: 7*60)
-s secs forget about an address after secs seconds. If host A
issues one
attack every this many seconds, it will never be blocked.
(Default: 20*60)
-----
If I'm not mistaken those two values should be toggled at the RC script.
Or am I lost with those therms/variable names?
--
WBR, Boris Samorodov (bsam)
FreeBSD Committer, http://www.FreeBSD.org The Power To Serve
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?50AFACEB.7000607>