[Sshguard-users] sshguard won't work on debian or ubuntu

[Robert S <rob...@gm...>]

I have installed sshguard using the following with debian/etch (the
same occurs with ubuntu):

./configure --with-firewall=iptables --with-iptables=/sbin
make
make install

I have used the recommended method for installation with syslog and
syslog-ng.  In both cases sshguard won't start when I start
syslog/syslog-ng - ie, it does not appear in the system log or when I
do 'ps ax'.  If I use the "tail" method I get the following, and
sshguard is not activated when a failed login occurs:

# tail -n0 -F /var/log/auth.log | /usr/local/sbin/sshguard
/usr/local/sbin/sshguard: line 1: syntax error near unexpected token `('
/usr/local/sbin/sshguard: line 1: `Jun 25 07:37:56 etch sshd[10186]:
(pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh
ruser= rhost=myhost.mydomain.com.au  user=robert'

This is strange, because when a failed login occurs, the following
appears in my logs (I have tried disabling PAM):

Jun 27 07:41:27 myhost sshd[19437]: Failed password for robert from
192.168.2.40 port 39753 ssh2
Jun 27 07:41:28 myhost sshd[19437]: Failed password for robert from
192.168.2.40 port 39753 ssh2
Jun 27 07:41:30 myhost sshd[19437]: Failed password for robert from
192.168.2.40 port 39753 ssh2

I have installed it on a gentoo machine and it works flawlessly.

Does anybody know how to get this to work?