Menu
▾
▴
Re: [Sshguard-users] new installation
|
From: Mij <mi...@bi...> - 2009-04-18 12:41:59
|
On Apr 18, 2009, at 0:56 , Adam Cohen wrote: > Running interactively seems to work fine. > > In my log, the message for the release that failed shows an > incomplete IP. (see "Releaseing 4...." below) > It looks like the IP address might not have been parsed out > completely? > > Also, not sure how to report this, but my version of Redhat > generates a message that sshguard isn't catching. They look like > this: > > Apr 17 14:42:41 prod-02 sshd[12923]: Failed password for invalid > user staff from 209.9.188.68 port 54513 ssh2 This is supported; which version did you install? Have a peek at the SVN version http://sshguard.sourceforge.net/svn.html > Can additional scanning rules be added by the user (me?) I will > look at the source in svn to see how this is structured. You can sure do that if you're vaguely familiar with Yacc parsers. In general, users can submit here http://sshguard.sourceforge.net/newattackpatt.php I periodically check there and integrate. |
