Menu
▾
▴
[Sshguard-maintainers] recommendations
|
From: Mij <mi...@bi...> - 2007-03-17 10:42:12
|
Some up to date recommendations when packaging sshguard: - always use sshguard v. 0.91 - when a URL to the project is to be included, use http://sshguard.sourceforge.net - make sshguard run in syslog / syslog-ng whenever possible - if you run sshguard standalone, use "tail -n -F src_logfile" (not -f as pointed in README), and determine the correct src_logfile that gets ssh entries in the target system - if you run sshguard with syslog-ng, mind to use the following filter: filter sshlogs { facility(auth, authpriv) and match("ssh"); }; (add "auth, " to the filter reported in README) - LINUX: sshguard wants iptables in /sbin/ by default. If the target system has iptables somewhere else, mind to adjust paths in file fwalls/command_iptables.h before configuring |