Menu
▾
▴
[Sshguard-users] Parser changes for FreeBSD
|
From: Mark F. <fe...@fr...> - 2014-05-27 16:35:55
|
Following up on an old mailing list entry I found: > FreeBSD syslogd has an option to make it more verbose when writing > logs. > I'm old and slow; so I find the option helpful. Unfortunately using > the option spoils sshguard's parser. This bug still exists. I'm currently the sshguard port maintainer on FreeBSD. Another developer started using sshguard, stumbled upon the same bug, and asked my assistance with figuring out why none of the bots scanning his hosts were getting blocked. I don't think it's that unusual to increase the verbosity of syslogd messages, especially if you're receiving syslog messages from remote machines or jails running on the same host. So I guess what I'm meaning to ask: was there any progress on this? Could the verbose log prefix be recognized instead of having the entry be completely discarded? It seems that the regex matching here is simply too strict... Thanks! |
