Menu
▾
▴
sshguard-users
|
From: David H. <dho...@gm...> - 2009-05-09 15:20:39
|
Anyone on this list have access to a OSX 10.5 dev environment that is
willing to test some patches ?
I have a patch for ipfw firewall and ipv6 that I have tested on
FreeBSD 7, and OSX (ppc) 10.4, but I would prefer someone test with
OSX 10.5 or even snow leopard (intel or ppc) as well.
1) Get base code here:
svn co https://sshguard.svn.sourceforge.net/svnroot/sshguard sshguard
2) Get the patches (both) of them from here: (save to the
sshguard/trunk directory from step 1)
https://sourceforge.net/tracker/?func=detail&aid=2777559&group_id=188282&atid=924687
3) Apply patches and configure/build
su root
cd sshguard/trunk
patch <osx_configure_ac_patch.txt
pushd src/fwalls
patch <../../ipfw_ipv6_patch_2.txt
popd
autoreconf
./configure --with-firewall=ipfw
make clean && make
4) If all builds well, try running sshguard with the "-d" parameter
and paste the following attack example:
e.g. src/sshguard -d
Attack Example: (if your email client wraps the string to multiple
lines, make sure it is one line before you paste into the sshguard
debug terminal)
Apr 30 12:19:08 minimac sshd[7097]: Failed keyboard-interactive/pam
for invalid user asdf from 2001:db8::1 port 57453 ssh2
Paste the attack example into the terminal 4 times and you should see
the following at the end:
Running command: '/sbin/ip6fw add 55045 drop ipv6 from 2001:db8::1 to any'.
55045 deny ipv6 from 2001:db8::1 to any
Command exited 0.
First sight of offender '2001:db8::1:6', adding to offenders list.
If you see any other exit code than "Command exited 0.", please paste
the entire output buffer in a response email.
--Thanks!
-_Dave H
|
|
From: Mij <mi...@bi...> - 2009-05-25 21:49:15
|
thanks for your contribution. Any Mac user around who can contribute a few testing? If not, I will have a look at this in some weeks. On May 9, 2009, at 17:20 , David Horn wrote: > Anyone on this list have access to a OSX 10.5 dev environment that is > willing to test some patches ? > > I have a patch for ipfw firewall and ipv6 that I have tested on > FreeBSD 7, and OSX (ppc) 10.4, but I would prefer someone test with > OSX 10.5 or even snow leopard (intel or ppc) as well. > > 1) Get base code here: > svn co https://sshguard.svn.sourceforge.net/svnroot/sshguard > sshguard > > 2) Get the patches (both) of them from here: (save to the > sshguard/trunk directory from step 1) > https://sourceforge.net/tracker/?func=detail&aid=2777559&group_id=188282&atid=924687 > > 3) Apply patches and configure/build > > su root > cd sshguard/trunk > patch <osx_configure_ac_patch.txt > pushd src/fwalls > patch <../../ipfw_ipv6_patch_2.txt > popd > autoreconf > ./configure --with-firewall=ipfw > make clean && make > > 4) If all builds well, try running sshguard with the "-d" parameter > and paste the following attack example: > > e.g. src/sshguard -d > > Attack Example: (if your email client wraps the string to multiple > lines, make sure it is one line before you paste into the sshguard > debug terminal) > > Apr 30 12:19:08 minimac sshd[7097]: Failed keyboard-interactive/pam > for invalid user asdf from 2001:db8::1 port 57453 ssh2 > > Paste the attack example into the terminal 4 times and you should see > the following at the end: > > Running command: '/sbin/ip6fw add 55045 drop ipv6 from 2001:db8::1 > to any'. > 55045 deny ipv6 from 2001:db8::1 to any > Command exited 0. > First sight of offender '2001:db8::1:6', adding to offenders list. > > If you see any other exit code than "Command exited 0.", please paste > the entire output buffer in a response email. > > --Thanks! > > -_Dave H > > ------------------------------------------------------------------------------ > The NEW KODAK i700 Series Scanners deliver under ANY circumstances! > Your > production scanning environment may not be a perfect world - but > thanks to > Kodak, there's a perfect scanner to get the job done! With the NEW > KODAK i700 > Series Scanner you'll get full speed at 300 dpi even with all image > processing features enabled. http://p.sf.net/sfu/kodak-com > _______________________________________________ > Sshguard-users mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-users |
|
From: Peter B. <be...@an...> - 2009-05-26 14:50:32
|
On Sat, 9 May 2009, David Horn wrote:
> Anyone on this list have access to a OSX 10.5 dev environment that is
> willing to test some patches ?
Looks like it works:
(4 tries, debugging match stuff cut)...
Matched address 2001:db8::1:6 attacking service 100
Blocking 2001:db8::1:6 for >420secs: 4 failures over 8 seconds.
Running command: '/sbin/ip6fw add 55038 drop ipv6 from 2001:db8::1 to any'.
55038 deny ipv6 from 2001:db8::1 to any
Command exited 0.
First sight of offender '2001:db8::1:6', adding to offenders list.
Thanks for the patches David! Compiled on 10.5.7 Mac Pro.
Beckman
PS -- Is the webmaster position still open Mij? I think I emailed you
about it but never heard back.
---------------------------------------------------------------------------
Peter Beckman Internet Guy
be...@an... http://www.angryox.com/
---------------------------------------------------------------------------
|
|
From: Mij <mi...@bi...> - 2009-07-02 22:47:07
|
Committed, thanks David, thanks testers. On May 9, 2009, at 17:20 , David Horn wrote: > Anyone on this list have access to a OSX 10.5 dev environment that is > willing to test some patches ? > > I have a patch for ipfw firewall and ipv6 that I have tested on > FreeBSD 7, and OSX (ppc) 10.4, but I would prefer someone test with > OSX 10.5 or even snow leopard (intel or ppc) as well. > > 1) Get base code here: > svn co https://sshguard.svn.sourceforge.net/svnroot/sshguard > sshguard > > 2) Get the patches (both) of them from here: (save to the > sshguard/trunk directory from step 1) > https://sourceforge.net/tracker/?func=detail&aid=2777559&group_id=188282&atid=924687 > > 3) Apply patches and configure/build > > su root > cd sshguard/trunk > patch <osx_configure_ac_patch.txt > pushd src/fwalls > patch <../../ipfw_ipv6_patch_2.txt > popd > autoreconf > ./configure --with-firewall=ipfw > make clean && make > > 4) If all builds well, try running sshguard with the "-d" parameter > and paste the following attack example: > > e.g. src/sshguard -d > > Attack Example: (if your email client wraps the string to multiple > lines, make sure it is one line before you paste into the sshguard > debug terminal) > > Apr 30 12:19:08 minimac sshd[7097]: Failed keyboard-interactive/pam > for invalid user asdf from 2001:db8::1 port 57453 ssh2 > > Paste the attack example into the terminal 4 times and you should see > the following at the end: > > Running command: '/sbin/ip6fw add 55045 drop ipv6 from 2001:db8::1 > to any'. > 55045 deny ipv6 from 2001:db8::1 to any > Command exited 0. > First sight of offender '2001:db8::1:6', adding to offenders list. > > If you see any other exit code than "Command exited 0.", please paste > the entire output buffer in a response email. > > --Thanks! > > -_Dave H > > ------------------------------------------------------------------------------ > The NEW KODAK i700 Series Scanners deliver under ANY circumstances! > Your > production scanning environment may not be a perfect world - but > thanks to > Kodak, there's a perfect scanner to get the job done! With the NEW > KODAK i700 > Series Scanner you'll get full speed at 300 dpi even with all image > processing features enabled. http://p.sf.net/sfu/kodak-com > _______________________________________________ > Sshguard-users mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-users |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X