SSHGuard / Issues / #15 slow to initialize iptables

#15 slow to initialize iptables

Status: fixed

Owner: Kevin Zheng

Labels: None

Priority: Normal

Updated: 2015-04-12

Created: 2014-07-21

Creator: cboldt

Private: No

sshguard was tking several minutes to start up, and on running in debug mode, I noticed a slow processing of reverse lookups as "iptables -L" was run.

If the iptables initialization command is changed to "iptables -n -L sshguard", there are two benefits. Initialization is a snap, and there is a check for the necessary "sshguard" chain in the iptables ruleset. That second benefit might help users who think they have sshguard setup (it starts okay), only to run into an error when sshguard detects an action-worthy incident.

Discussion

Kevin Zheng - 2015-04-12

Fixed in e18e89b, thanks!

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Kevin Zheng - 2015-04-12

status: open --> fixed

assigned_to: Kevin Zheng

Priority: 2 --> Normal
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

slow to initialize iptables

Intelligently block brute-force attacks by aggregating system logs

Searches

Help

#15 slow to initialize iptables

Discussion