Date: Wed, 27 Jun 2012 20:39:27 +0200 From: Hilko Meyer <hilko.meyer@gmx.de> To: Xin LI <delphij@FreeBSD.org> Cc: cvs-ports@FreeBSD.org Subject: Re: cvs commit: ports/security/sshguard Makefile ports/security/sshguard/files pkg-message.in sshguard.in Message-ID: <klkmu7pec38ck2fno0lje4q3ccer4a1s36@4ax.com> In-Reply-To: <201206270022.q5R0Mt8X097020@repoman.freebsd.org> References: <201206270022.q5R0Mt8X097020@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi On Wed, 27 Jun 2012 00:22:55 +0000 (UTC), in gmane.os.freebsd.devel.cvs you wrote: >delphij 2012-06-27 00:22:55 UTC > > FreeBSD ports repository > > Modified files: > security/sshguard Makefile > security/sshguard/files pkg-message.in > Added files: > security/sshguard/files sshguard.in > Log: > Add a rc.d script to daemonize sshguard. Thanks for adding a rc.d script for sshguard making it unnecessary to edit syslog.conf after every update. But after looking to the script I see some problems. We are using this command: | auth.info;authpriv.info |exec /usr/local/sbin/sshguard -p 4200 -s 3600 -w 1.2.3.4/26 >From my understanding the rc.d script expects only a filename for whitelisting. But via the -w command-line option it is possible to add explicit addresses, host names, address blocks or a file name. Also the script enables permanent blacklisting unconditionally without an option to disable it. regards, Hilko
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?klkmu7pec38ck2fno0lje4q3ccer4a1s36>