[Sshguard-users] On initiating sshguard

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi list!

n00b question here.  I'm on FreeBSD 10.1 and running the ipfw firewall.  I
installed the sshguard-ipfw package; so I'm assuming that was the right
thing to do to start.

My confusion is that I seem to see two different ways to launch/run
sshguard.  One is from syslogd in syslog.conf, e.g.

auth.info;authpriv.info |/usr/local/sbin/sshguard [options here]

and another is to run sshguard as daemon from (the package installed)
/usr/local/etc/rc.d/sshguard script, which tells sshguard to read auth.log.
(And is a very nicely documented script to boot BTW.)

Both methods together *seem* redundant, but how should I be running
sshguard: both ways or only one way (i.e. but not the other)?

I RTFM but didn't notice this detail.  I apologize if I missed something in
the reading.

Thanks for your help, --Rick

[Sshguard-users] On initiating sshguard

Intelligently block brute-force attacks by aggregating system logs

[Sshguard-users] On initiating sshguard