Menu
▾
▴
Re: [Sshguard-users] sshguard not working on OS X Yosemite
|
From: Barry M. <bmu...@ga...> - 2015-03-12 17:59:25
|
http://www.sshguard.net/docs/setup/ OS X uses the pf backend as of Yosemite _-_-_-_-_-_-_-_-_-_-_-_- Barry John Muldrey Jr. Doctoral Student and Graduate Researcher, Georgia Institute of Technology www.barrymuldrey.com +1 (504) 975-7971 689 Berne St SE, Apt C Atlanta, GA 30312-3529 USA On Thu, Mar 12, 2015 at 1:55 PM, Mike Laster <ml...@gm...> wrote: > That is probably it. I didn’t see anything in the FAQ on how to do that. > > > sudo pfctl -s rules > No ALTQ support in kernel > ALTQ related functions disabled > scrub-anchor "com.apple/*" all fragment reassemble > anchor "com.apple/*" all > > > On Mar 12, 2015, at 9:41 AM, Mark Felder <fe...@Fr...> wrote: > > > > > > > > On Thu, Mar 12, 2015, at 10:25, Mike Laster wrote: > >> I have the latest source built (including the post 1.5 patch for the > >> "via" > >> problem. Checked out from bcf98c7e4c24. It appears that sshguard is > >> parsing properly since when I repeatedly fail to login via ssh from > >> another > >> machine: > >> > >> 3/12/15 8:23:49.238 AM sshd[43878]: error: PAM: authentication error for > >> root from 192.168.1.146 via 192.168.1.10 > >> 3/12/15 8:23:49.801 AM sshd[43878]: error: PAM: authentication error for > >> root from 192.168.1.146 via 192.168.1.10 > >> 3/12/15 8:23:50.206 AM sshd[43878]: error: PAM: authentication error for > >> root from 192.168.1.146 via 192.168.1.10 > >> > >> and it seems to add it to pf: > >> > >>> sudo pfctl -T show -t sshguard > >> No ALTQ support in kernel > >> ALTQ related functions disabled > >> 192.168.1.146 > >> > >> However, my ssh sessions are not actually being blocked. I can keep > >> hitting ssh all day from 192.168.1.146 and no blocking seems to be going > >> on. > >> > >> Is there something else I need to do to enable actual blocking? > >> > > > > What is the output of > > > > pfctl -s rules > > > > > > So we can see what rules are loaded. I suspect there's no actual block > > rule for the sshguard table. > > > > > ------------------------------------------------------------------------------ > > Dive into the World of Parallel Programming The Go Parallel Website, > sponsored > > by Intel and developed in partnership with Slashdot Media, is your hub > for all > > things parallel software development, from weekly thought leadership > blogs to > > news, videos, case studies, tutorials and more. Take a look and join the > > conversation now. http://goparallel.sourceforge.net/ > > _______________________________________________ > > Sshguard-users mailing list > > Ssh...@li... > > https://lists.sourceforge.net/lists/listinfo/sshguard-users > > > > ------------------------------------------------------------------------------ > Dive into the World of Parallel Programming The Go Parallel Website, > sponsored > by Intel and developed in partnership with Slashdot Media, is your hub for > all > things parallel software development, from weekly thought leadership blogs > to > news, videos, case studies, tutorials and more. Take a look and join the > conversation now. http://goparallel.sourceforge.net/ > _______________________________________________ > Sshguard-users mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-users > |
