sshguard 1.5_1 security =12

Protect hosts from brute force attacks against ssh and other services
Maintained by: mij@bitchx.it
Port Added: 01 Mar 2007 01:37:03
License: not specified in port

---

---

Sshguard monitors services from their logging activity. It reacts to messages
about dangerous activity by blocking the source address with the local firewall.

Sshguard employs a clever parser that can recognize several logging formats at
once transparently (syslog, syslog-ng, metalog, multilog, raw messages), and
detects attacks for many services out of the box, including SSH, FreeBSD's
ftpd and dovecot.  It can operate all the major firewalling systems, including
PF, netfilter/iptables, IPFIREWALL/ipfw, IPFILTER.

Sshguard has several relevant features like support for IPv6, whitelisting,
suspension, log message authentication. It is reliable, easy to set up and
demands very few resources to the system.

WWW: http://sshguard.sourceforge.net

CVSWeb : Sources : Main Web Site : Distfiles Availability : PortsMon

---

Slave ports

security/sshguard-ipfilter

security/sshguard-ipfw

security/sshguard-pf

There are no ports dependent upon this port

---

To install the port: cd /usr/ports/security/sshguard/ && make install clean
To add the package: pkg_add -r sshguard

---

Configuration Options

     No options to configure

---

Master Sites:

http://heanet.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://sunet.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://iweb.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://switch.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://surfnet.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://kent.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://freefr.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://voxel.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://jaist.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://osdn.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://nchc.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://ncu.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://transact.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://softlayer.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://internode.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://ufpr.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

http://waix.dl.sourceforge.net/project/sshguard/sshguard/sshguard-1.5/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

Fix sshguared-ipfw -b option

PR:             157807
Submitted by:   Dmitry <smallcms@gmail.com>
Approved by:    maintainer timeout

- Update to 1.5

PR:             155607
Submitted by:   Matthias Fechner <idefix@fechner.net>

- update to 1.4

PR:             ports/142469
Approved by:    gabor, Maintainer

- Switch SourceForge ports to the new File Release System: categories starting
with P,R,S

- Update to 1.3, which also fixes build problem with autoconf

PR:             127599
Submitted by:   Jeremy Johnston <jeremy at smart-serv dot net>
Suggested by:   Mij <mij at bitchx dot it> (maintainer)

- Update to 1.2. Changes:
  - support for Cyrus IMAP
  - support for SSH "possible break-in attempt" messages
  - updated support for dovecot to include logging format of new versions
  - fix of IPF backend causing sshguard not to update /etc/ipf.rules (disallow
IPv6)
  - fix detection of password when sshd doesn't log anything more than PAM
- While here, use SF macro

PR:             127456
Submitted by:   Mij <mij at bitchx dot it> (maintainer)

- Install man page to ${MANPREFIX}/man .  Thanks to pav@ for notification
- Update description reflecting additions of version 1.1

PR:             ports/126001
Submitted by:   Mij <mij AT bitchx.it> (maintainer)

- Update to 1.1

PR:             ports/125973
Submitted by:   Mij <mij AT bitchx.it> (maintainer)

Prevent the port from running automake if it is installed

PR:             118065
Submitted by:   Mij <mij@bitchx.it>

- add patch for:
The regex used to recognize IPv6 addresses in security/sshguard{,-ipfw,-pf}
doesn't catch all IPv6 addresses. The author (and port maintainer) is aware of
this issue and supplied the patch, which fixes the issue. The patch will be
part of sshguard-1.1, which is due soonish.
- bump PORTREVISION

PR:             113800
Submitted by:   Henrik Brix Andersen
Approved by:    Mij (maintainer)

Shorten COMMENT

Submitted by:   sat@

Allow slave ports to overwrite the COMMENT.

Submitted by:   sat@

- upgrade to version 1.0
- the port is no longer interactive, it uses the default blocking backend
(hosts)
- for pf and ipfw see the new ports sshguard-[pf|ipfw]

PR:             ports/112749
Submitted by:   Mij (maintainer)
Reviewed by:    leeym@

- respect maintainer's insist on interactive part,
  even IS_INTERACTIVE is discouraged
- PORTREVISION is thus bumped.

Approved by:    maintainer (implicit)

Add sshguard 0.91, protect networked hosts from brute force attacks
against ssh.

PR:             ports/109439
Submitted by:   Mij <mij at bitchx.it>

12 vulnerabilities affecting 17 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities