Re: blacklistd

To: netbsd-users%netbsd.org@localhost
Subject: Re: blacklistd
From: christos%astron.com@localhost (Christos Zoulas)
Date: Sun, 30 Oct 2016 15:55:32 +0000 (UTC)

In article <a78ccf62-b1ca-fe51-13e8-3c4aa6e0ad38%gmail.com@localhost>,
Jan Danielsson  <jan.m.danielsson%gmail.com@localhost> wrote:
>Hello,
>
>   Two questions regarding blacklistd[.conf]:
>
>   1) Is it possible to block the host, not specifically the service?
>I.e. if host A.B.C.D keeps in trying to dictionary attack ssh, is it
>possible to block A.B.C.D not limited to port 22?

No, there is no way to currently do that. I could add it, but the original
intention was to protect at the service level.

>   2) When I try to set the block duration to 30d in blacklistd.conf, it
>only seems to block 5-6 days.  A visual inspection of getsecs() in
>conf.c doesn't yield an obvious explicit limitation.  Should 30d work,
>or is there a limit imposed elsewhere?

I don't see one, but there could be a bug...

christos

References:
- blacklistd
  - From: Jan Danielsson

Prev by Date: blacklistd
Next by Date: Re: Packages to NetBSD 7.0.2
Previous by Thread: blacklistd
Indexes:

Home | Main Index | Thread Index | Old Index