[Sshguard-users] Failed password attempts

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

It seems reasonable that sshguard should be able to detect failed
password attempts, too.   I realize there is "faillog" on Linux systems
for that, but not on FreeBSD. My system log was jammed with over 1000 of
these entries from last night:

Oct 31 10:03:22 gw sshd[55652]: Failed password for root from
213.186.38.84 port 53650 ssh2
Oct 31 10:03:23 gw sshd[55654]: Failed password for root from
213.186.38.84 port 44049 ssh2
Oct 31 10:03:24 gw sshd[55656]: Failed password for root from
213.186.38.84 port 49587 ssh2
Oct 31 10:03:25 gw sshd[55658]: Failed password for root from
213.186.38.84 port 41421 ssh2
Oct 31 10:03:25 gw sshd[55660]: Failed password for root from
213.186.38.84 port 36564 ssh2
Oct 31 10:03:26 gw sshd[55662]: Failed password for root from
213.186.38.84 port 35111 ssh2
Oct 31 10:03:27 gw sshd[55664]: Failed password for root from
213.186.38.84 port 49382 ssh2

[Sshguard-users] Failed password attempts

Intelligently block brute-force attacks by aggregating system logs

[Sshguard-users] Failed password attempts