Tree [52bf4c] master dbmodule /
History



File Date Author Commit
cmake 2012-03-31 danta danta [395431] Updated the CMake file to make it easier to bui...
conf 2012-12-16 danta danta [7b82f7] security fix, do not run commands using system()
doc 2014-05-10 danta danta [fcd915] bug #35 syntax corrections
htdocs 2013-08-31 deksai deksai [626c7c] Update the copyright date.
CMakeLists.txt 2012-12-19 danta danta [43383c] Rename targets to pam_abl
Changelog.txt 2013-08-29 danta danta [8e2d6e] prepare for the 0.6.0 release
README 2013-08-29 danta danta [8e2d6e] prepare for the 0.6.0 release
bdb.c unknown
bdb.h unknown
config.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
config.h 2013-08-31 deksai deksai [626c7c] Update the copyright date.
dbfun.h 2013-08-31 deksai deksai [626c7c] Update the copyright date.
kc.c unknown
kc.h unknown
log.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
log.h 2013-08-31 deksai deksai [626c7c] Update the copyright date.
pam_abl.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
pam_abl.h 2013-08-31 deksai deksai [626c7c] Update the copyright date.
pam_functions.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
pam_functions.h unknown
rule.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
rule.h 2013-08-31 deksai deksai [626c7c] Update the copyright date.
test.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
test.h 2013-08-31 deksai deksai [626c7c] Update the copyright date.
test_abl.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
test_config.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
test_db.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
test_pam_functions.c unknown
test_rule.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
test_types.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
tools.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
typefun.c 2013-08-31 deksai deksai [626c7c] Update the copyright date.
typefun.h 2013-08-31 deksai deksai [626c7c] Update the copyright date.

Read Me

Welcome to pam-abl.

1) Introduction
2) Building
3) Supported databases



1) Introduction
pam_abl is a pam module designed to automatically block hosts which are attempting a brute force attack. Brute force attacks are an unsophisticated way to find authentication credentials. Basically, a computer is setup to try all kinds of user names and password combinations until one works. It may sound fairly far fetched, but it does actually work. Many system accounts have common user names. Passwords are also easily guessable in many situations. 

The latest version is 0.5.0
This version is a total rewrite of the previous versions. I guess +-400 lines are unchanged (mostly dealing with parsing the config file).
The total rewrite results in a lot more stability and some extra features (Please see the manpages in the doc directory for more details).


2) Building
As you may have noticed pam-abl doesn't come with a normal makefile, mostly because I find them to complicated for what they need to do. That's why I decided to go with cmake. CMake is a family of tools designed to build, test and package software. You can download your copy from their website (http://www.cmake.org/). Eventually the idea is to build packages for most common distributions using cmake.

So what do you need to do to build this version. 
a. Pick yourself a build directory. It can be the directory with the sources.
      mkdir cmake_build
b. cd to that dir
      cd cmake_build
c. call cmake with as argument the top level project directory. This will generate a makefile.
      cmake ../
d. call make
      make

The build process will make 3 targets:
a. The library "pam-abl.so"
b. The commandline tool "pam-abl"
c. A test executable "pam-abl_test". Really handy for testing it with different db versions

!!!!!!!!!!
!!! Building using different version of Berkeley db.
!!! See the build file "CMakeLists.txt" for more details.
!!!!!!!!!!


3) Supported databases
Currently pam-abl is tested with the following versions of Berkeley db:
 - db-5.3.15
 - db-5.2.42
 - db-5.1.25
 - db-4.8.30
 - db-4.7.25
 - db-4.6.21
 - db-4.5.20
 - db-4.4.20

Versions  <= 4.3 are currently no longer supported.