Menu
▾
▴
sshguard-maintainers — Support and announcements for package maintainers
You can subscribe to this list here.
| 2007 |
Jan
|
Feb
|
Mar
(9) |
Apr
(2) |
May
(3) |
Jun
(15) |
Jul
(1) |
Aug
|
Sep
|
Oct
(8) |
Nov
|
Dec
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2008 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(4) |
Jun
|
Jul
(1) |
Aug
(1) |
Sep
|
Oct
(1) |
Nov
(2) |
Dec
|
| 2009 |
Jan
|
Feb
(1) |
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2011 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(2) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2012 |
Jan
|
Feb
|
Mar
(3) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2013 |
Jan
|
Feb
|
Mar
(1) |
Apr
(1) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2015 |
Jan
|
Feb
|
Mar
|
Apr
(2) |
May
(4) |
Jun
|
Jul
|
Aug
(2) |
Sep
|
Oct
(1) |
Nov
|
Dec
(1) |
| 2016 |
Jan
(10) |
Feb
|
Mar
|
Apr
(2) |
May
(3) |
Jun
|
Jul
|
Aug
(8) |
Sep
|
Oct
(1) |
Nov
|
Dec
|
| 2017 |
Jan
(6) |
Feb
|
Mar
(1) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(1) |
Nov
(1) |
Dec
(1) |
| 2018 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(1) |
| 2019 |
Jan
(1) |
Feb
|
Mar
|
Apr
|
May
|
Jun
(1) |
Jul
|
Aug
|
Sep
(2) |
Oct
(2) |
Nov
|
Dec
|
| 2020 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
(1) |
Sep
|
Oct
|
Nov
|
Dec
|
| 2021 |
Jan
|
Feb
|
Mar
(2) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
(1) |
Oct
|
Nov
|
Dec
|
| 2022 |
Jan
|
Feb
|
Mar
|
Apr
(2) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2023 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: mantra U. <uni...@gm...> - 2008-05-05 15:09:07
|
Hello Mij, I have found some discrepancy in version v0.91, v1.0, v1.1-beta, the way "sshguard" is blocking the offending ip's. I found the consistent behavior between the v0.91 and and v1.1-beat. But v1.0 stable release seems to be not blocking address in a timely fashion. What is the time frame you are planning on release the stable version of 1.1 ? Thanks, Tantra. -- Regards, mantra - Instrument of Thought |
|
From: mantra U. <uni...@gm...> - 2008-05-02 02:52:50
|
Hello Mij, I have found some discrepancy in version v0.91, v1.0, v1.1-beta, the way "sshguard" is blocking the offending ip's. I found the consistent behaviour between the v0.91 and and v1.1-beat. But v1.0 stable release seems to be not blocking address in a timely fashion. What is the time frame you are planning on release the stable version of 1.1 ? Thanks, Tantra. On 6/5/07, Mij <mi...@bi...> wrote: > > hello folks, > > sshguard 1.0 stable has been finally released, see > > http://sourceforge.net/forum/forum.php?forum_id=701923 > > There is a couple of relevant news for maintainers wrt 0.91: > 1) paths can now be set during ./configure > For example, iptables path, or the path of /etc/hosts.allow file. > These are autodetected via $PATH if they're not specified manually. > If the package compiles on the user host, mind that some systems > exclude sbin from users PATH, so specifing the path manually is safer. > > 2) there is now a man page to install (man/sshguard.8) > It is installed automatically during make install > > 3) there is an example file for whitelisting in exmples/ > whitelistfile.example. > Depending on the policy of the system, decide whether (and where) > to copy this example file into the system. > > 4) a thorough setup guide covering all the setup combos is available at > http://sshguard.sourceforge.net/doc/setup/setup.html > Unless your package makes the software "up and running" (which is > preferred, when possible), I recommend to show it off as feedback after > a successful installation. > > I remind to use the syslog+sshguard or syslog-ng+sshguard whenever > possible; avoid the tail+sshguard combo which is just a working hack. > > > > Last but not least, there is a new "policy" for maintainerships: > - I have freed slots on http://sshguard.sourceforge.net/doc/ > sshguardpackages.html > for sshguard 1.0 > - if you intend to build a package for an OS, please send a message > to the > sshguard-maintainers ml containing: > - the target OS or OSes > - the URL of the package, or the package content itself if you want > mirroring > - possibly a brief TXT or HTML file with notes for users to install > the package if it's not > trivial on default setups (for example on unofficial APT sources, > or > gentoo sunrise etc). > If what you need to say is already explained somewhere else, feel > free to redirect there. > I will publish your file on the website for better user feedback. > > > Your help is appreciated, thanks > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > Sshguard-maintainers mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers > -- Regards, mantra - Instrument of Thought |
|
From: Mij <mi...@bi...> - 2007-10-23 15:20:02
|
On 16/ott/07, at 23:01, Forrest Aldrich wrote: > Sorry for the late reply; got distracted. > > We're using Redhat Enterprise Linux (latest release) and I'm a > little surprised that it has the older syslogd. > > After reading the manpages and creating the FIFO, I'm still a > little confused about how this would be properly called in /etc/ > syslog.conf. > > For example, if I have: > > auth.info;authpriv.* |/usr/local/ > sbin/sshguard -p 1800 -w /usr/local/etc/sshguard_whitelist > > I would need to change that to: > > |/usr/local/sbin/sshguard -p 1800 -w /usr/local/etc/ > sshguard_whitelist < /path/to/FIFO this is wrong. As syslogd does not support piping but just writing to FIFOs, you must make syslogd write to a FIFO: 1) mkfifo /var/tmp/sshguard.fifo 2) change syslogd.conf with auth.info;authpriv.* |/var/tmp/ sshguard.fifo 3) then run every time /usr/local/sbin/sshguard -p 1800 -w /usr/local/etc/sshguard_whitelist < /var/tmp/sshguard.fifo if you have further questions on this topic, please direct them to ssh...@li... > > That doesn't seem right. How does syslogd know to WRITE to the > FIFO to begin with, with that directive? > > It may just be easier for me to install rsyslogd or syslog-ng, but > I'd like to eliminate too many variables if possible. > > > Thanks. > > > Mij wrote: >> On 07/ott/07, at 17:25, Forrest Aldrich wrote: >> >> >>> It appears we cannot use the same format in Redhat's syslog.conf >>> as I >>> can in FreeBSD, ie: the | to a command directive. The manpage >>> specifies a "named pipe" for which mkfifo must be used to create >>> first. >>> >>> I read through the manpage and cannot see where else we can pipe the >>> output of the logged actions to the stock syslog daemon. Of >>> course, the >>> solution will be to try a third party application like rsyslogd or >>> syslog-ng. However, I wanted to be sure my facts were correct >>> before >>> doing so. >>> >> thanks for your interest. >> >> In systems with older syslogds the FIFO is the best solution. It is >> clean and >> unintrusive. You make syslogd write to the FIFO, and call sshguard >> like >> "sshguard options < FIFO" >> >> are you preparing a rpm package? Did you see >> http://sshguard.sourceforge.net/packages/ ? >> >> --------------------------------------------------------------------- >> ---- >> This SF.net email is sponsored by: Splunk Inc. >> Still grepping through log files to find problems? Stop. >> Now Search log events and configuration files using AJAX and a >> browser. >> Download your FREE copy of Splunk now >> http://get.splunk.com/ >> _______________________________________________ >> Sshguard-maintainers mailing list >> Ssh...@li... >> https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers >> > ---------------------------------------------------------------------- > --- > This SF.net email is sponsored by: Splunk Inc. > Still grepping through log files to find problems? Stop. > Now Search log events and configuration files using AJAX and a > browser. > Download your FREE copy of Splunk now >> http://get.splunk.com/ > _______________________________________________ > Sshguard-maintainers mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers |
|
From: Forrest A. <fo...@fo...> - 2007-10-20 16:49:28
|
sshguard is not catching failed password attempts for "valid" users:
Oct 20 10:10:56 gw sshd[86897]: Failed password for root from
80.93.212.74 port 53760 ssh2
Oct 20 10:10:57 gw sshd[86899]: Failed password for root from
80.93.212.74 port 53839 ssh2
Oct 20 10:10:59 gw sshd[86901]: Failed password for root from
80.93.212.74 port 53913 ssh2
Oct 20 10:11:01 gw sshd[86903]: Failed password for root from
80.93.212.74 port 53985 ssh2
Oct 20 10:11:02 gw sshd[86918]: Failed password for root from
80.93.212.74 port 54060 ssh2
Oct 20 10:11:04 gw sshd[86920]: Failed password for root from
80.93.212.74 port 54146 ssh2
Oct 20 10:11:05 gw sshd[86922]: Failed password for root from
80.93.212.74 port 54217 ssh2
Oct 20 10:11:07 gw sshd[86924]: Invalid user administrator from
80.93.212.74
Oct 20 10:11:07 gw sshd[86924]: Failed password for invalid user
administrator from 80.93.212.74 port 54290 ssh2
Oct 20 10:11:09 gw sshd[86926]: Invalid user administrator from
80.93.212.74
Oct 20 10:11:09 gw sshd[86926]: Failed password for invalid user
administrator from 80.93.212.74 port 54369 ssh2
Oct 20 10:11:10 gw sshd[86928]: Invalid user administrator from
80.93.212.74
Oct 20 10:11:10 gw sshd[86928]: Failed password for invalid user
administrator from 80.93.212.74 port 54444 ssh2
Oct 20 10:11:12 gw sshd[86930]: Invalid user administrator from
80.93.212.74
Oct 20 10:11:12 gw sshguard[85248]: Blocking 80.93.212.74: X
failures over X seconds.
But it catches an invalid user. It should be especially sensitive of
the failed root password attempts. Even though I do not allow root logins.
Did you receive my previous 2 inquiries?
_F
|
|
From: Forrest A. <fo...@fo...> - 2007-10-16 20:59:46
|
Sorry for the late reply; got distracted. We're using Redhat Enterprise Linux (latest release) and I'm a little surprised that it has the older syslogd. After reading the manpages and creating the FIFO, I'm still a little confused about how this would be properly called in /etc/syslog.conf. For example, if I have: auth.info;authpriv.* |/usr/local/sbin/sshguard -p 1800 -w /usr/local/etc/sshguard_whitelist I would need to change that to: |/usr/local/sbin/sshguard -p 1800 -w /usr/local/etc/sshguard_whitelist < /path/to/FIFO That doesn't seem right. How does syslogd know to WRITE to the FIFO to begin with, with that directive? It may just be easier for me to install rsyslogd or syslog-ng, but I'd like to eliminate too many variables if possible. Thanks. Mij wrote: > On 07/ott/07, at 17:25, Forrest Aldrich wrote: > > >> It appears we cannot use the same format in Redhat's syslog.conf as I >> can in FreeBSD, ie: the | to a command directive. The manpage >> specifies a "named pipe" for which mkfifo must be used to create >> first. >> >> I read through the manpage and cannot see where else we can pipe the >> output of the logged actions to the stock syslog daemon. Of >> course, the >> solution will be to try a third party application like rsyslogd or >> syslog-ng. However, I wanted to be sure my facts were correct before >> doing so. >> > > thanks for your interest. > > In systems with older syslogds the FIFO is the best solution. It is > clean and > unintrusive. You make syslogd write to the FIFO, and call sshguard like > "sshguard options < FIFO" > > are you preparing a rpm package? Did you see > http://sshguard.sourceforge.net/packages/ ? > > ------------------------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. > Still grepping through log files to find problems? Stop. > Now Search log events and configuration files using AJAX and a browser. > Download your FREE copy of Splunk now >> http://get.splunk.com/ > _______________________________________________ > Sshguard-maintainers mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers > |
|
From: Mij <mi...@bi...> - 2007-10-10 12:40:37
|
I dunno how to read this report but I guess it's good news on the progress :) please give a call when the package enter in the main repos. When it is ready to be published on http://sshguard.sourceforge.net/packages/ please notify us and provide the usual brief installing.txt thanks! On 09/ott/07, at 15:28, Ernesto Nadir Crespo Avila wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > URL: http://qa.debian.org/developer.php?login=ec...@de... > > Ernesto Crespo > > - -- > Ernesto Crespo > Linux Registered User: #418790 > GNU/Linux Debian Etch- Kernel 2.6.22.5 #1 SMP PREEMPT > Fingerprint = 66CB 6BF4 7C7C EC0E DA60 06C8 87E8 9061 C97E 7015 > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iD8DBQFHC4ISh+iQYcl+cBURApX7AKCVBc3dlDYZu8W9JPMjYoUaQFNMaACglD1Q > J5FFMvsBWb++IU7FmwwwrAU= > =8tKS > -----END PGP SIGNATURE----- > > <ecrespo.vcf>--------------------------------------------------------- > ---------------- > This SF.net email is sponsored by: Splunk Inc. > Still grepping through log files to find problems? Stop. > Now Search log events and configuration files using AJAX and a > browser. > Download your FREE copy of Splunk now >> http://get.splunk.com/ > _______________________________________________ > Sshguard-maintainers mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers |
|
From: Ernesto N. C. A. <ec...@gm...> - 2007-10-09 13:26:22
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 URL: http://qa.debian.org/developer.php?login=ec...@de... Ernesto Crespo - -- Ernesto Crespo Linux Registered User: #418790 GNU/Linux Debian Etch- Kernel 2.6.22.5 #1 SMP PREEMPT Fingerprint = 66CB 6BF4 7C7C EC0E DA60 06C8 87E8 9061 C97E 7015 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHC4ISh+iQYcl+cBURApX7AKCVBc3dlDYZu8W9JPMjYoUaQFNMaACglD1Q J5FFMvsBWb++IU7FmwwwrAU= =8tKS -----END PGP SIGNATURE----- |
|
From: Ernesto N. C. A. <ec...@de...> - 2007-10-09 11:30:17
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------- Mensaje original -------- Asunto: sshguard_1.0-1_amd64.changes is NEW Fecha: Tue, 09 Oct 2007 11:17:07 +0000 De: Debian Installer <ins...@ft...> Para: Ernesto Nadir Crespo Avila <ec...@de...> (new) sshguard_1.0-1.diff.gz optional net (new) sshguard_1.0-1.dsc optional net (new) sshguard_1.0-1_amd64.deb optional net Protects networked hosts from the today's widespread brute force attacks against ssh servers. It detects such attacks and blocks the author's address with a firewall rule. . (new) sshguard_1.0.orig.tar.gz optional net Changes: sshguard (1.0-1) unstable; urgency=low . * Initial release (Closes: #428214) Override entries for your package: Announcing to deb...@li... Closing bugs: 428214 Your package contains new components which requires manual editing of the override file. It is ok otherwise, so please be patient. New packages are usually added to the override file about once a week. You may have gotten the distribution wrong. You'll get warnings above if files already exist in other distributions. - -- Ernesto Crespo Linux Registered User: #418790 GNU/Linux Debian Etch- Kernel 2.6.22.5 #1 SMP PREEMPT Fingerprint = 66CB 6BF4 7C7C EC0E DA60 06C8 87E8 9061 C97E 7015 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHC2bSh+iQYcl+cBURAgW5AKCSHVxS23hwXEx4S1DP0/hxXSXg9gCfTVNK R120z6o/bSF5IcgGNxutmE0= =2Zmi -----END PGP SIGNATURE----- |
|
From: Mij <mi...@bi...> - 2007-10-08 14:12:34
|
On 07/ott/07, at 17:25, Forrest Aldrich wrote: > It appears we cannot use the same format in Redhat's syslog.conf as I > can in FreeBSD, ie: the | to a command directive. The manpage > specifies a "named pipe" for which mkfifo must be used to create > first. > > I read through the manpage and cannot see where else we can pipe the > output of the logged actions to the stock syslog daemon. Of > course, the > solution will be to try a third party application like rsyslogd or > syslog-ng. However, I wanted to be sure my facts were correct before > doing so. thanks for your interest. In systems with older syslogds the FIFO is the best solution. It is clean and unintrusive. You make syslogd write to the FIFO, and call sshguard like "sshguard options < FIFO" are you preparing a rpm package? Did you see http://sshguard.sourceforge.net/packages/ ? |
|
From: Forrest A. <fo...@fo...> - 2007-10-07 15:25:06
|
It appears we cannot use the same format in Redhat's syslog.conf as I can in FreeBSD, ie: the | to a command directive. The manpage specifies a "named pipe" for which mkfifo must be used to create first. I read through the manpage and cannot see where else we can pipe the output of the logged actions to the stock syslog daemon. Of course, the solution will be to try a third party application like rsyslogd or syslog-ng. However, I wanted to be sure my facts were correct before doing so. Thanks, Forrest |
|
From: Mij <mi...@bi...> - 2007-07-04 16:31:45
|
"Robert S" contributed this debian startup script on the -users ml. Anyone preparing a debian package may be interested. I did not review the script. |
|
From: Mij <mi...@bi...> - 2007-06-29 23:07:45
|
... and shall we be blessed by your work too? On 29/giu/07, at 19:18, muhammad imran wrote: > i have compiled the package for ubuntu i386 |
|
From: muhammad i. <imr...@ya...> - 2007-06-29 17:18:21
|
i have compiled the package for ubuntu i386 |
|
From: Mij <mi...@bi...> - 2007-06-22 11:56:22
|
On 22/giu/07, at 10:34, Ali Polatel wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Mij <mi...@bi...> yazm=C4=B1=C5=9F: >> >> On 21/giu/07, at 20:33, Ali Polatel wrote: >> >>> Hi, >>> I just imported sshguard from gentoo-sunrise to the official gentoo >>> tree. It's under app-admin/sshguard. The ebuild doesn't have >>> support for >>> arama right now which is in my TODO list. >> >> good to read that. >> Can you provide the customary installing file content for >> http://sshguard.sourceforge.net/packages/ ? > > Well, it's just 'emerge sshguard' right now.. But as I mentioned the > ebuild is not perfect. I plan to add a tcpd use flag for tcp-wrappers > so there won't be a hard dependency for iptables and support for ipfw. > Then we can modify the installing file explaining about the USE flags. okay You already did a significant job providing a standard ebuild for =20 gentoo. If you like to improve the port with those variants, I suggest to =20 wait for version 1.2 that includes support for ipfilter. thanks |
|
From: Ali P. <ha...@ge...> - 2007-06-22 08:36:33
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mij <mi...@bi...> yazmış: > > On 21/giu/07, at 20:33, Ali Polatel wrote: > > > Hi, > > I just imported sshguard from gentoo-sunrise to the official gentoo > > tree. It's under app-admin/sshguard. The ebuild doesn't have > > support for > > arama right now which is in my TODO list. > > good to read that. > Can you provide the customary installing file content for > http://sshguard.sourceforge.net/packages/ ? Well, it's just 'emerge sshguard' right now.. But as I mentioned the ebuild is not perfect. I plan to add a tcpd use flag for tcp-wrappers so there won't be a hard dependency for iptables and support for ipfw. Then we can modify the installing file explaining about the USE flags. - -- ali polatel (hawking) Not all men who drink are poets. Some of us drink because we aren't poets. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7-ecc0.1.6 (GNU/Linux) iD8DBQFGe4l8ygDPwY5yTtwRAtrHAJ46lyTpr98/46SHX2mdy8QYMQi8dgCeJX8h b942SGxZKlul4N/ORrvfGRA= =l5a/ -----END PGP SIGNATURE----- |
|
From: Mij <mi...@bi...> - 2007-06-22 08:22:58
|
On 21/giu/07, at 20:33, Ali Polatel wrote: > Hi, > I just imported sshguard from gentoo-sunrise to the official gentoo > tree. It's under app-admin/sshguard. The ebuild doesn't have > support for > arama right now which is in my TODO list. good to read that. Can you provide the customary installing file content for http://sshguard.sourceforge.net/packages/ ? |
|
From: Ali P. <po...@gm...> - 2007-06-21 18:43:27
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ali Polatel <ha...@ge...> yazmış: > Hi, > I just imported sshguard from gentoo-sunrise to the official gentoo > tree. It's under app-admin/sshguard. The ebuild doesn't have support for > arama right now which is in my TODO list. > sorry, support for gentoo/bsd* /me still wonders why I wrote that word instead :) - -- ali polatel (hawking) Keep America beautiful. Swallow your beer cans. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7-ecc0.1.6 (GNU/Linux) iD8DBQFGesZUygDPwY5yTtwRAhq8AJ9mkslxRi9GZ9ky7NcAcNK/s4jiTQCcCycW niGf94N/XEvTLUdOEE15/zQ= =bYf3 -----END PGP SIGNATURE----- |
|
From: Ali P. <ha...@ge...> - 2007-06-21 18:35:23
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I just imported sshguard from gentoo-sunrise to the official gentoo tree. It's under app-admin/sshguard. The ebuild doesn't have support for arama right now which is in my TODO list. - -- ali polatel (hawking) Take me drunk, I'm home again! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7-ecc0.1.6 (GNU/Linux) iD8DBQFGesRwygDPwY5yTtwRAlozAJwL9+r1WFqWWRbMlt3E7obt1iywwgCgkGyy rAzOSsglff19z83rfZPJGjg= =ZmFp -----END PGP SIGNATURE----- |
|
From: mantra U. <uni...@gm...> - 2007-06-11 05:29:46
|
1. To install the pre-compiled package for run the following command;
#rpm -ivh sshguard-1.0-1.i386.rpm
2. To install the source package and compile it your self;
(a) #rpm -ivh sshguard-1.0-1.src.rpm
(b) #cd /usr/src/redhat/SPECS
(c) #rpmbuild -ba sshguard.spec
A successfull build should tell display the final binary RPM location,
Which can be installed later from that locatoin.
-
mantra
On 6/10/07, Mij <mi...@bi...> wrote:
>
> good.
>
>
> please let me mirror the repos on the official site so I can trace its
> traffic.
>
>
> The final note: What full command do users run for installing your
> package?
> This is for an installing.txt file for your package, compare with the one
> for FreeBSD at
> http://sshguard.sourceforge.net/packages/freebsd/installing.txt
>
>
> The packages page will be visible to users in some days.
>
>
> thanks
>
>
>
> On 08/giu/07, at 06:56, mantra UNIX wrote:
>
> Hello Mij,
>
> I believe i have included what you are looking for;
> - Licence Type is changed to "BSD"
> - Package Group is set to be "Applications/System"
> - Added "--with-firewall=iptables"
> - Check for path to the "iptables", if not found in "/sbin/iptables"
> then defaults to "/usr/sbin/iptables"
> - The yum URL is http://tantra.homelinux.net/yum/
> .../yum/sshguard/i386/ has the binary RPM
> .../yum/sshguard/source/ has the source
>
> Regards,
> mantra - Instrument of Thought
>
> On 6/6/07, Mij <mi...@bi...> wrote:
> >
> > thank you
> >
> > Two more things:
> > 1) what command do people use to this rpm? "yum $URL"?
> > 2) had a quick look at the spec file in src.spm:
> > # the license is BSD if it has any impact
> > # if there is any more appropriate group than "Applications/
> > Productivity"?
> > I believe something with "security" or "system" in it would be good
> > # if iptables is not in /sbin/iptables: does the build work for
> > unprivileged users too? if not, I recommend appending
> > --with-iptables=/usr/sbin/iptables
> > to ./configure
> >
> > If you agree with these mods, please send me the final
> > version; I will publish the bin rpm, the src rpm and the txt with the
> > commands for using them
> >
> > thanks
> >
> >
> > On 06/giu/07, at 07:15, mantra UNIX wrote:
> >
> > > mij,
> > >
> > > Attached are the Source and Binary RPM's built and tested for
> > > 'Fedora Core 6', i386 Architecture. I can provide a web-link for
> > > package downloads. Let me know.
> > >
> > > Nice job on version 1.0.
> > >
> > > Regards,
> > > Tantra
> >
> >
> > -------------------------------------------------------------------------
> >
> > This SF.net email is sponsored by DB2 Express
> > Download DB2 Express C - the FREE version of DB2 express and take
> > control of your XML. No limits. Just data. Click to get it now.
> > http://sourceforge.net/powerbar/db2/
> > _______________________________________________
> > Sshguard-maintainers mailing list
> > Ssh...@li...
> > https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers
> >
>
>
>
> --
> Regards,
> mantra - Instrument of Thought
> -------------------------------------------------------------------------
> This SF.net email is sponsored by DB2 Express
> Download DB2 Express C - the FREE version of DB2 express and take
> control of your XML. No limits. Just data. Click to get it now.
>
> http://sourceforge.net/powerbar/db2/_______________________________________________
> Sshguard-maintainers mailing list
> Ssh...@li...
> https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers
>
>
>
>
> -------------------------------------------------------------------------
> This SF.net email is sponsored by DB2 Express
> Download DB2 Express C - the FREE version of DB2 express and take
> control of your XML. No limits. Just data. Click to get it now.
> http://sourceforge.net/powerbar/db2/
> _______________________________________________
> Sshguard-maintainers mailing list
> Ssh...@li...
> https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers
>
>
--
Regards,
mantra - Instrument of Thought
|
|
From: Mij <mi...@bi...> - 2007-06-10 08:59:37
|
On 10/giu/07, at 02:32, Ernesto Nadir Crespo Avila wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hello. > > I need follow information for Debian policy. > > sshguard author and Copyright. > > > > debian/copyright: > > - ------------------------------------ > > Upstream Author(s): > > sshguard maintainers <ssh...@li...> correct > Copyright: > > Copyright (C) sshguard Team I would use (following http://lists.debian.org/debian-devel-announce/2003/12/msg00007.html): ============ Copyright (C) sshguard Team You can use and redistribute this software under the terms of the New BSD license, see http://www.opensource.org/licenses/bsd-license.html. ============ > - ---------------------------- > > I only need that information for debian package. > > Ernesto Crespo |
|
From: Mij <mi...@bi...> - 2007-06-10 08:59:02
|
good. please let me mirror the repos on the official site so I can trace its traffic. The final note: What full command do users run for installing your package? This is for an installing.txt file for your package, compare with the one for FreeBSD at http://sshguard.sourceforge.net/packages/freebsd/installing.txt The packages page will be visible to users in some days. thanks On 08/giu/07, at 06:56, mantra UNIX wrote: > Hello Mij, > > I believe i have included what you are looking for; > - Licence Type is changed to "BSD" > - Package Group is set to be "Applications/System" > - Added "--with-firewall=iptables" > - Check for path to the "iptables", if not found in "/sbin/ > iptables" then defaults to "/usr/sbin/iptables" > - The yum URL is http://tantra.homelinux.net/yum/ > .../yum/sshguard/i386/ has the binary RPM > .../yum/sshguard/source/ has the source > > Regards, > mantra - Instrument of Thought > > On 6/6/07, Mij <mi...@bi...> wrote: > thank you > > Two more things: > 1) what command do people use to this rpm? "yum $URL"? > 2) had a quick look at the spec file in src.spm: > # the license is BSD if it has any impact > # if there is any more appropriate group than "Applications/ > Productivity"? > I believe something with "security" or "system" in it would be good > # if iptables is not in /sbin/iptables: does the build work for > unprivileged users too? if not, I recommend appending > --with-iptables=/usr/sbin/iptables > to ./configure > > If you agree with these mods, please send me the final > version; I will publish the bin rpm, the src rpm and the txt with the > commands for using them > > thanks > > > On 06/giu/07, at 07:15, mantra UNIX wrote: > > > mij, > > > > Attached are the Source and Binary RPM's built and tested for > > 'Fedora Core 6', i386 Architecture. I can provide a web-link for > > package downloads. Let me know. > > > > Nice job on version 1.0. > > > > Regards, > > Tantra > > > ---------------------------------------------------------------------- > --- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > Sshguard-maintainers mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers > > > > -- > Regards, > mantra - Instrument of Thought > ---------------------------------------------------------------------- > --- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > Sshguard-maintainers mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers |
|
From: Ernesto N. C. A. <ec...@gm...> - 2007-06-10 00:31:50
|
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello.
I need follow information for Debian policy.
sshguard author and Copyright.
debian/copyright:
- ------------------------------------
Upstream Author(s):
sshguard maintainers <ssh...@li...>
Copyright:
Copyright (C) sshguard Team
- ----------------------------
I only need that information for debian package.
Ernesto Crespo
- --
Ernesto Crespo
Linux Registered User: #418790
GNU/Linux Debian Etch- Kernel 2.6.20.6 #1 SMP PREEMPT
Fingerprint = 66CB 6BF4 7C7C EC0E DA60 06C8 87E8 9061 C97E 7015
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGa0akh+iQYcl+cBURAuBcAJoCP5xU1RTxAwKO1DlRKlmBHSlfUwCfSDyz
dhsiKLcmq0TcFlGRMyS4jUQ=
=AC5V
-----END PGP SIGNATURE-----
|
|
From: mantra U. <uni...@gm...> - 2007-06-08 04:56:30
|
Hello Mij, I believe i have included what you are looking for; - Licence Type is changed to "BSD" - Package Group is set to be "Applications/System" - Added "--with-firewall=iptables" - Check for path to the "iptables", if not found in "/sbin/iptables" then defaults to "/usr/sbin/iptables" - The yum URL is http://tantra.homelinux.net/yum/ .../yum/sshguard/i386/ has the binary RPM .../yum/sshguard/source/ has the source Regards, mantra - Instrument of Thought On 6/6/07, Mij <mi...@bi...> wrote: > > thank you > > Two more things: > 1) what command do people use to this rpm? "yum $URL"? > 2) had a quick look at the spec file in src.spm: > # the license is BSD if it has any impact > # if there is any more appropriate group than "Applications/ > Productivity"? > I believe something with "security" or "system" in it would be good > # if iptables is not in /sbin/iptables: does the build work for > unprivileged users too? if not, I recommend appending > --with-iptables=/usr/sbin/iptables > to ./configure > > If you agree with these mods, please send me the final > version; I will publish the bin rpm, the src rpm and the txt with the > commands for using them > > thanks > > > On 06/giu/07, at 07:15, mantra UNIX wrote: > > > mij, > > > > Attached are the Source and Binary RPM's built and tested for > > 'Fedora Core 6', i386 Architecture. I can provide a web-link for > > package downloads. Let me know. > > > > Nice job on version 1.0. > > > > Regards, > > Tantra > > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > Sshguard-maintainers mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-maintainers > -- Regards, mantra - Instrument of Thought |
|
From: Mij <mi...@bi...> - 2007-06-06 08:57:22
|
thank you Two more things: 1) what command do people use to this rpm? "yum $URL"? 2) had a quick look at the spec file in src.spm: # the license is BSD if it has any impact # if there is any more appropriate group than "Applications/ Productivity"? I believe something with "security" or "system" in it would be good # if iptables is not in /sbin/iptables: does the build work for unprivileged users too? if not, I recommend appending --with-iptables=/usr/sbin/iptables to ./configure If you agree with these mods, please send me the final version; I will publish the bin rpm, the src rpm and the txt with the commands for using them thanks On 06/giu/07, at 07:15, mantra UNIX wrote: > mij, > > Attached are the Source and Binary RPM's built and tested for > 'Fedora Core 6', i386 Architecture. I can provide a web-link for > package downloads. Let me know. > > Nice job on version 1.0. > > Regards, > Tantra |
|
From: Mij <mi...@bi...> - 2007-06-05 14:44:37
|
hello folks, sshguard 1.0 stable has been finally released, see http://sourceforge.net/forum/forum.php?forum_id=701923 There is a couple of relevant news for maintainers wrt 0.91: 1) paths can now be set during ./configure For example, iptables path, or the path of /etc/hosts.allow file. These are autodetected via $PATH if they're not specified manually. If the package compiles on the user host, mind that some systems exclude sbin from users PATH, so specifing the path manually is safer. 2) there is now a man page to install (man/sshguard.8) It is installed automatically during make install 3) there is an example file for whitelisting in exmples/ whitelistfile.example. Depending on the policy of the system, decide whether (and where) to copy this example file into the system. 4) a thorough setup guide covering all the setup combos is available at http://sshguard.sourceforge.net/doc/setup/setup.html Unless your package makes the software "up and running" (which is preferred, when possible), I recommend to show it off as feedback after a successful installation. I remind to use the syslog+sshguard or syslog-ng+sshguard whenever possible; avoid the tail+sshguard combo which is just a working hack. Last but not least, there is a new "policy" for maintainerships: - I have freed slots on http://sshguard.sourceforge.net/doc/ sshguardpackages.html for sshguard 1.0 - if you intend to build a package for an OS, please send a message to the sshguard-maintainers ml containing: - the target OS or OSes - the URL of the package, or the package content itself if you want mirroring - possibly a brief TXT or HTML file with notes for users to install the package if it's not trivial on default setups (for example on unofficial APT sources, or gentoo sunrise etc). If what you need to say is already explained somewhere else, feel free to redirect there. I will publish your file on the website for better user feedback. Your help is appreciated, thanks |
1 message has been excluded from this view by a project administrator.