Menu
▾
▴
Re: [SSHGuard-users] syslog-ng v3.5 with sshguard
|
From: jungle B. <jun...@gm...> - 2016-08-12 21:00:50
|
Hi Kevin, On 12 August 2016 at 13:30, Kevin Zheng <kev...@gm...> wrote: > On 08/08/2016 12:07, jungle Boogie wrote: >> I'd like to use sshguard on a pine64 soc system with linux kernel >> 3.10.102-2-pine64-longsleep. >> >> I have installed syslog-ng v3.5 from apt packages and I'm attempting >> to configure sshguard + syslog-ng per this page: >> http://www.sshguard.net/docs/setup/#syslog-ng > > I would recommend polling log files using sshg-logtail or the '-l' > option instead. Syslog daemons have a habit of sending SIGHUP to > SSHGuard at frequent intervals. > Where can I find information about sshg-logtail? Do you have a working example of sshguard + iptables + persistent log monitoring? Right now I'm doing: /usr/local/sbin/sshguard -a 10 -l /var/log/auth.log -p 6000 & This works but won't work after rebooting. > Best, > Kevin Thanks! > > -- > Kevin Zheng > kev...@gm... | ke...@be... | PGP: 0xC22E1090 > ------- inum: 883510009027723 sip: jun...@si... |
