Menu
▾
▴
[Sshguard-users] New ipfw backend
|
From: Kevin Z. <kev...@gm...> - 2015-05-26 22:32:40
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi there, In light of the recent `ipfw` issues I've decided to re-implement the `ipfw` backend using the command framework that is used for nearly all of the other backends. Since I don't run `ipfw` on my machine, I'm unable to test this patch. If you are running `ipfw` and are willing to test-drive this new and more than likely broken backend, apply the attached patch, compile, and take it for a whirl. In particular, I'm not sure if the "add multiple addresses" part works, so if you have a large blacklist that crashed the original ipfw backend try it on the new one. The new backend operates on ipfw tables. You'll need to set up your firewall with a tabled named 'sshguard'. SSHGuard (should) add attackers to this table; you'll need to set up the rules yourself. Please don't test this in a production environment, and if you test it at all, be aware that bad things can happen. Please take a look at the patch before you try to run this code. Best, Kevin Zheng - -- Kevin Zheng kev...@gm... | ke...@kd... | PGP: 0xC22E1090 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJVZPR5AAoJEOrPD3bCLhCQ4VsH/3mugV40W5hmj3sfVOV+AYDl 0hUssAIOdapw0yOoaRnGYP/2+IZNbtw1737iH10BBX1S59xmWDuqPT/Wi00kHuLv WttvPCUuHBBJcJS6H0C+VG0yeQepFdmvln6zb7bKBAbarVb8z4Oq5sOBPDMtby9t hAfYWr4CEKe1MI9x0wHY8y2Lz9yVBc+bPUJzYj+WS7a1qwdYqzyLIfB5NWMsRpdF lv6ktXZYWwb/Gkw/ALTwPHm5xepz5suBjsyPS2eQgVnBMaNAzjsGy349BvKYOdkX Q5wKaVwBWs0RcpfR0GmbYoSbT3Ya1Q+ToNl/9Ep8BUMbC/XuR+Py7u1kGghIlHA= =JaPC -----END PGP SIGNATURE----- |
