blacklistd question

To: current-users%netbsd.org@localhost
Subject: blacklistd question
From: Paul Goyette <paul%whooppee.com@localhost>
Date: Mon, 9 Jan 2017 07:21:38 +0800 (PHT)

I was looking at the blacklistd (and related) man-pages, and I'm notsure I understand how it works. Perhaps someone can enlighten me.

The man page references socket(s) on which blacklistd listens fornotifications, but it doesn't seem to indicate what programs are(currently capable of) sending reports to the socket(s). apropos(1)doesn't seem to find any references from other man pages to provideadditional clues.

The example in blacklistd.conf(5) seems to imply that sshd will sendnotifications, but nothing in the sshd man page confirms this. Also,the example uses "*" for the connection type and protocol, but it seemsthat "stream" and "tcp" would be better choices? Is the use of "*"simply a means of avoiding separate IPv4 and IPv6 rules? (And if so,shouldn't there be a separate parameter for address family?)


Thanks in advance.




+------------------+--------------------------+------------------------+
| Paul Goyette     | PGP Key fingerprint:     | E-mail addresses:      |
| (Retired)        | FA29 0E3B 35AF E8AE 6651 | paul at whooppee.com   |
| Kernel Developer | 0786 F758 55DE 53BA 7731 | pgoyette at netbsd.org |
+------------------+--------------------------+------------------------+

Follow-Ups:
- Re: blacklistd question
  - From: Christos Zoulas

Prev by Date: Re: i915 hangs after 201612251500Z changes
Next by Date: daily CVS update output
Previous by Thread: -current build failure of evbearm-el
Next by Thread: Re: blacklistd question
Indexes:

Home | Main Index | Thread Index | Old Index