A ports freeze means that commits will be few and far between and only by approval.

bruteforceblocker 1.2.3 security =7

Checks for SSH bruteforce and blocks given IPs
Maintained by: danger@FreeBSD.org
Port Added: 26 May 2005 22:15:27

---

---

BruteForceBlocker is a perl script, that works along with pf - OpenBSD's
firewall (Which is also available on FreeBSD since version 5.2 is out).
It's main purpose is to block SSH bruteforce attacks via firewall.
When this script is running, it checks sshd logs from syslog and looks
for Failed Login attempts - mostly some annoying script attacks, and
counts number of such attempts. When given IP reaches configured limit
of fails, script puts this IP to the pf's table and blocks any further
traffic to the that box from given IP (This also depends on
configuration done in pf.conf).

WWW: http://danger.rulez.sk/projects/bruteforceblocker/

- Daniel Gerzo <danger@FreeBSD.org>

CVSWeb : Sources : Main Web Site : Distfiles Availability : PortsMon

---

Required To Run: sysutils/p5-Unix-Syslog, sysutils/p5-Sys-Hostname-Long, www/p5-libwww, dns/p5-Net-DNS, lang/perl5.8

---

To install the port: cd /usr/ports/security/bruteforceblocker/ && make install clean
To add the package: pkg_add -r bruteforceblocker

---

Configuration Options

     No options to configure

---

Master Sites:

http://danger.rulez.sk/projects/bruteforceblocker/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.se.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.uk.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.ru.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.jp.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.tw.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.cn.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

Welcome bsd.perl.mk.  Add support for constructs such as USE_PERL5=5.8.0+.
Drop support for antique perl.

Work done by:   gabor
Sponsored by:   Google Summer of Code 2007
Hat:            portmgr

Change my e-mail address to the @FreeBSD.org one.

Approved by: linimon

On request of maintianer, also remove the dependency on p5-File-Tail

Reinstate maintainer, seems it was his secondary MX host which complained.

Also fix IGNORE to follow style.

bruteforceblocker needs p5-File-Tail

reset maintainer: <danger@rulez.sk>: host mailhub.cia.sk[72.21.48.70] said: 554
    <danger@rulez.sk>: Relay access denied (in reply to RCPT TO command)

PR:             ports/95633
Submitted by:   Joe Horn <joehorn@mi.chu.edu.tw>

- Update to 1.2.3

PR:             ports/94077
Submitted by:   Daniel Gerzo <danger@rulez.sk> (maintainer)

- Update to 1.2.1

PR:             ports/91167
Submitted by:   Daniel Gerzo <danger@rulez.sk> (maintainer)

- Update to 1.2

Submitted by:   Daniel Gerzo (maintainer) over EFnet

- Update to 1.1

PR:             ports/85585
Submitted by:   maintainer

bruteforceblocker is a script that checks sshd's auth.log for Failed
login attemtps and cooperates with pf firewall. When given IP gains
specific number of fails, bruteforceblocker adds this IP to the pf's
table. This is useful for people who are getting large number of
these attempts.

PR:             ports/80211
Submitted by:   Daniel Gerzo <danger@rulez.sk>

21 vulnerabilities affecting 37 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities