diff options
| author | pav <pav@FreeBSD.org> | 2005-05-26 21:14:58 +0000 |
|---|---|---|
| committer | pav <pav@FreeBSD.org> | 2005-05-26 21:14:58 +0000 |
| commit | 35246c6f168229e7f48f7ae11433aaf87f33ebf0 (patch) | |
| tree | bed00060b9181e71ee20732add6860c93e9e8e6a /security/bruteforceblocker/files | |
| parent | 62e67d03a6c474b7a7cad170cb6bf81731f57795 (diff) | |
| download | FreeBSD-ports-35246c6f168229e7f48f7ae11433aaf87f33ebf0.zip FreeBSD-ports-35246c6f168229e7f48f7ae11433aaf87f33ebf0.tar.gz | |
bruteforceblocker is a script that checks sshd's auth.log for Failed
login attemtps and cooperates with pf firewall. When given IP gains
specific number of fails, bruteforceblocker adds this IP to the pf's
table. This is useful for people who are getting large number of
these attempts.
PR: ports/80211
Submitted by: Daniel Gerzo <danger@rulez.sk>
Diffstat (limited to 'security/bruteforceblocker/files')
| -rw-r--r-- | security/bruteforceblocker/files/bruteforceblocker.sh.in | 33 | ||||
| -rw-r--r-- | security/bruteforceblocker/files/pkg-message.in | 8 |
2 files changed, 41 insertions, 0 deletions
diff --git a/security/bruteforceblocker/files/bruteforceblocker.sh.in b/security/bruteforceblocker/files/bruteforceblocker.sh.in new file mode 100644 index 0000000..86e7665 --- /dev/null +++ b/security/bruteforceblocker/files/bruteforceblocker.sh.in @@ -0,0 +1,33 @@ +#!/bin/sh + +# PROVIDE: bruteforceblocker +# REQUIRE: LOGIN +# KEYWORD: FreeBSD shutdown + +# +# Add the following lines to /etc/rc.conf to enable bruteforceblocker: +# +# bruteforceblocker_enable="YES" +# + +. %%RC_SUBR%% + +name="bruteforceblocker" +rcvar=`set_rcvar` +load_rc_config $name + +command="%%PREFIX%%/bin/bruteforceblocker.pl" +pidfile="/var/run/bruteforceblocker.pid" +procname="/usr/bin/perl" + +stop_postcmd=stop_postcmd + +stop_postcmd() +{ + rm -f $pidfile +} + +# set defaults +bruteforceblocker_enable=${bruteforceblocker_enable:-"NO"} + +run_rc_command "$1" diff --git a/security/bruteforceblocker/files/pkg-message.in b/security/bruteforceblocker/files/pkg-message.in new file mode 100644 index 0000000..5dadbe1 --- /dev/null +++ b/security/bruteforceblocker/files/pkg-message.in @@ -0,0 +1,8 @@ +===> CONFIGURATION NOTE: + +To setup bruteforceblocker, you should check main script +located at %%PREFIX%%/bin/bruteforceblocker.pl + +when you are done, you will also need to add to /etc/rc.conf +bruteforceblocker_enable="YES", so you will be able to start +bruteforceblocker via rcNG script. |
