From: Mike L. <ml...@gm...> - 2015-03-12 17:55:26
|
That is probably it. I didn’t see anything in the FAQ on how to do that. > sudo pfctl -s rules No ALTQ support in kernel ALTQ related functions disabled scrub-anchor "com.apple/*" all fragment reassemble anchor "com.apple/*" all > On Mar 12, 2015, at 9:41 AM, Mark Felder <fe...@Fr...> wrote: > > > > On Thu, Mar 12, 2015, at 10:25, Mike Laster wrote: >> I have the latest source built (including the post 1.5 patch for the >> "via" >> problem. Checked out from bcf98c7e4c24. It appears that sshguard is >> parsing properly since when I repeatedly fail to login via ssh from >> another >> machine: >> >> 3/12/15 8:23:49.238 AM sshd[43878]: error: PAM: authentication error for >> root from 192.168.1.146 via 192.168.1.10 >> 3/12/15 8:23:49.801 AM sshd[43878]: error: PAM: authentication error for >> root from 192.168.1.146 via 192.168.1.10 >> 3/12/15 8:23:50.206 AM sshd[43878]: error: PAM: authentication error for >> root from 192.168.1.146 via 192.168.1.10 >> >> and it seems to add it to pf: >> >>> sudo pfctl -T show -t sshguard >> No ALTQ support in kernel >> ALTQ related functions disabled >> 192.168.1.146 >> >> However, my ssh sessions are not actually being blocked. I can keep >> hitting ssh all day from 192.168.1.146 and no blocking seems to be going >> on. >> >> Is there something else I need to do to enable actual blocking? >> > > What is the output of > > pfctl -s rules > > > So we can see what rules are loaded. I suspect there's no actual block > rule for the sshguard table. > > ------------------------------------------------------------------------------ > Dive into the World of Parallel Programming The Go Parallel Website, sponsored > by Intel and developed in partnership with Slashdot Media, is your hub for all > things parallel software development, from weekly thought leadership blogs to > news, videos, case studies, tutorials and more. Take a look and join the > conversation now. http://goparallel.sourceforge.net/ > _______________________________________________ > Sshguard-users mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-users |