bruteforceblocker 1.2.3 security =5

Checks for SSH bruteforce and blocks given IPs
Maintained by: danger@FreeBSD.org
Port Added: 26 May 2005 21:15:27
License: not specified in port

BruteForceBlocker is a perl script, that works along with pf - OpenBSD's
firewall (Which is also available on FreeBSD since version 5.2 is out).
It's main purpose is to block SSH bruteforce attacks via firewall.
When this script is running, it checks sshd logs from syslog and looks
for Failed Login attempts - mostly some annoying script attacks, and
counts number of such attempts. When given IP reaches configured limit
of fails, script puts this IP to the pf's table and blocks any further
traffic to the that box from given IP (This also depends on
configuration done in pf.conf).

WWW: http://danger.rulez.sk/projects/bruteforceblocker/

CVSWeb : Sources : Main Web Site : Distfiles Availability : PortsMon

---

NOTE: FreshPorts displays only required dependencies information. Optional dependencies are not covered.
Required To Run: sysutils/p5-Unix-Syslog, sysutils/p5-Sys-Hostname-Long, www/p5-libwww, dns/p5-Net-DNS, lang/perl5.8
There are no ports dependent upon this port

---

To install the port: cd /usr/ports/security/bruteforceblocker/ && make install clean
To add the package: pkg_add -r bruteforceblocker

---

Configuration Options

     No options to configure

---

Master Sites:

http://danger.rulez.sk/projects/bruteforceblocker/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.se.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.uk.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.ru.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.jp.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.tw.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.cn.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/pav/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

Remove more tags from pkg-descr files fo the form:

- Name
em@i.l

or variations thereof. While I'm here also fix some whitespace and other
formatting errors, including moving WWW: to the last line in the file.

-remove MD5

- Remove conditional checks for FreeBSD 5.x and older

Welcome bsd.perl.mk.  Add support for constructs such as USE_PERL5=5.8.0+.
Drop support for antique perl.

Work done by:   gabor
Sponsored by:   Google Summer of Code 2007
Hat:            portmgr

Change my e-mail address to the @FreeBSD.org one.

Approved by: linimon

On request of maintianer, also remove the dependency on p5-File-Tail

Reinstate maintainer, seems it was his secondary MX host which complained.

Also fix IGNORE to follow style.

bruteforceblocker needs p5-File-Tail

reset maintainer: <danger@rulez.sk>: host mailhub.cia.sk[72.21.48.70] said: 554
    <danger@rulez.sk>: Relay access denied (in reply to RCPT TO command)

PR:             ports/95633
Submitted by:   Joe Horn <joehorn@mi.chu.edu.tw>

- Update to 1.2.3

PR:             ports/94077
Submitted by:   Daniel Gerzo <danger@rulez.sk> (maintainer)

- Update to 1.2.1

PR:             ports/91167
Submitted by:   Daniel Gerzo <danger@rulez.sk> (maintainer)

- Update to 1.2

Submitted by:   Daniel Gerzo (maintainer) over EFnet

- Update to 1.1

PR:             ports/85585
Submitted by:   maintainer

bruteforceblocker is a script that checks sshd's auth.log for Failed
login attemtps and cooperates with pf firewall. When given IP gains
specific number of fails, bruteforceblocker adds this IP to the pf's
table. This is useful for people who are getting large number of
these attempts.

PR:             ports/80211
Submitted by:   Daniel Gerzo <danger@rulez.sk>

15 vulnerabilities affecting 34 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities