Menu
▾
▴
Re: [Sshguard-users] Blacklist database corruption
|
From: Mark F. <fe...@Fr...> - 2015-03-05 14:31:51
|
On Thu, Mar 5, 2015, at 08:11, Mark Felder wrote: > > The HardenedBSD folk have run into this too and Oliver Pinter wrote a > shell script[1] to fix the sshguard blacklist database. Could this be > converted into native code and handled at startup to sanitize the > database before crashing? > > I suppose "fix" is a bit misleading. After coffee and further inspection of the script, the "fix" is to extract the IP addresses from the corrupted database file, add them to the firewall ruleset, and delete the corrupted database. That's not so helpful, unless sshguard can do the same -- manually extract the IPs, delete the database file, and write them into a new one. Detecting the corruption successfully is probably the hardest part... |
