File	Date	Author	Commit
cmake	2012-03-31	danta	[395431] Updated the CMake file to make it easier to bui...
conf	2012-12-16	danta	[7b82f7] security fix, do not run commands using system()
doc	2014-05-10	danta	[fcd915] bug #35 syntax corrections
htdocs	2013-08-31	deksai	[626c7c] Update the copyright date.
CMakeLists.txt	2012-12-19	danta	[43383c] Rename targets to pam_abl
Changelog.txt	2013-08-29	danta	[8e2d6e] prepare for the 0.6.0 release
README	2013-08-29	danta	[8e2d6e] prepare for the 0.6.0 release
bdb.c	unknown
bdb.h	unknown
config.c	2013-08-31	deksai	[626c7c] Update the copyright date.
config.h	2013-08-31	deksai	[626c7c] Update the copyright date.
dbfun.h	2013-08-31	deksai	[626c7c] Update the copyright date.
kc.c	unknown
kc.h	unknown
log.c	2013-08-31	deksai	[626c7c] Update the copyright date.
log.h	2013-08-31	deksai	[626c7c] Update the copyright date.
pam_abl.c	2013-08-31	deksai	[626c7c] Update the copyright date.
pam_abl.h	2013-08-31	deksai	[626c7c] Update the copyright date.
pam_functions.c	2013-08-31	deksai	[626c7c] Update the copyright date.
pam_functions.h	unknown
rule.c	2013-08-31	deksai	[626c7c] Update the copyright date.
rule.h	2013-08-31	deksai	[626c7c] Update the copyright date.
test.c	2013-08-31	deksai	[626c7c] Update the copyright date.
test.h	2013-08-31	deksai	[626c7c] Update the copyright date.
test_abl.c	2013-08-31	deksai	[626c7c] Update the copyright date.
test_config.c	2013-08-31	deksai	[626c7c] Update the copyright date.
test_db.c	2013-08-31	deksai	[626c7c] Update the copyright date.
test_pam_functions.c	unknown
test_rule.c	2013-08-31	deksai	[626c7c] Update the copyright date.
test_types.c	2013-08-31	deksai	[626c7c] Update the copyright date.
tools.c	2015-05-13	Greg Hensley	[66339a] Ensure null-terimated key values.
typefun.c	2013-08-31	deksai	[626c7c] Update the copyright date.
typefun.h	2013-08-31	deksai	[626c7c] Update the copyright date.

Read Me

Welcome to pam-abl.

1) Introduction
2) Building
3) Supported databases



1) Introduction
pam_abl is a pam module designed to automatically block hosts which are attempting a brute force attack. Brute force attacks are an unsophisticated way to find authentication credentials. Basically, a computer is setup to try all kinds of user names and password combinations until one works. It may sound fairly far fetched, but it does actually work. Many system accounts have common user names. Passwords are also easily guessable in many situations. 

The latest version is 0.5.0
This version is a total rewrite of the previous versions. I guess +-400 lines are unchanged (mostly dealing with parsing the config file).
The total rewrite results in a lot more stability and some extra features (Please see the manpages in the doc directory for more details).


2) Building
As you may have noticed pam-abl doesn't come with a normal makefile, mostly because I find them to complicated for what they need to do. That's why I decided to go with cmake. CMake is a family of tools designed to build, test and package software. You can download your copy from their website (http://www.cmake.org/). Eventually the idea is to build packages for most common distributions using cmake.

So what do you need to do to build this version. 
a. Pick yourself a build directory. It can be the directory with the sources.
      mkdir cmake_build
b. cd to that dir
      cd cmake_build
c. call cmake with as argument the top level project directory. This will generate a makefile.
      cmake ../
d. call make
      make

The build process will make 3 targets:
a. The library "pam-abl.so"
b. The commandline tool "pam-abl"
c. A test executable "pam-abl_test". Really handy for testing it with different db versions

!!!!!!!!!!
!!! Building using different version of Berkeley db.
!!! See the build file "CMakeLists.txt" for more details.
!!!!!!!!!!


3) Supported databases
Currently pam-abl is tested with the following versions of Berkeley db:
 - db-5.3.15
 - db-5.2.42
 - db-5.1.25
 - db-4.8.30
 - db-4.7.25
 - db-4.6.21
 - db-4.5.20
 - db-4.4.20

Versions  <= 4.3 are currently no longer supported.