Re: [SSHGuard-users] Results from running 1.6.4

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

On 05/07/2016 06:00, Carmel wrote:
> I am running sshguard-ipfw,ver 1.6.4 on a FreeBSD-11 / amd64 machine. I
> installed the program via the ports system.
> 
> I was just wondering where you located this new documentation? I have
> been interested in exactly what and where to put entries in my "ipfw"
> file, or if I even needed them at all.

As mentioned before, the setup documentation is here:
http://www.sshguard.net/docs/setup/

You need to understand your own firewall to set up SSHGuard. Copying and
pasting might work if you're lucky.

The 'reset' instead of 'deny' was chosen as a more reasonable default to
give users better feedback. Dropping the connection will cause the
client to wait for a timeout, while resetting the connection will give
the user more meaningful feedback (connection reset by peer).

The rule number depends entirely on your ruleset. IPFW is a
first-rule-wins firewall, so the rule that allows SSH should have a
higher rule number than SSHGuard's rule number.

Best,
Kevin

-- 
Kevin Zheng
kev...@gm... | ke...@be... | PGP: 0xC22E1090

Re: [SSHGuard-users] Results from running 1.6.4

Intelligently block brute-force attacks by aggregating system logs

Re: [SSHGuard-users] Results from running 1.6.4