Slackware/system-configs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

sshguard configuration.

Browse source
This commit is contained in:
Darren 'Tadgy' Austin 2026-03-21 20:36:56 +00:00
commit ecf58dbcf6
3 changed files with 11 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

5
.gitattributesdb
View file

@ -466,7 +466,10 @@ c3No - -
ZXRjL3NzaC9zc2hkX2NvbmZpZw== 1758202229.000000000 1757606896.000000000 root:root 0644 - - ZXRjL3NzaC9zc2hkX2NvbmZpZw== 1758202229.000000000 1757606896.000000000 root:root 0644 - -
ZXRj 1774124129.988147011 1771501908.000000000 root:root 0755 - - ZXRj 1774124129.988147011 1771501908.000000000 root:root 0755 - -
c3NoZ3VhcmQ= - - c3NoZ3VhcmQ= - -
ZXRjL3NzaGd1YXJkL3NzaGd1YXJkLmNvbmY= 1774105733.111818452 1758050700.000000000 root:root 0644 - - ZXRjL3NzaGd1YXJkLy5naXRpZ25vcmU= 1774125137.895659238 1774125137.895659238 root:root 0644 - -
ZXRj 1774124129.988147011 1771501908.000000000 root:root 0755 - -
c3NoZ3VhcmQ= - -
ZXRjL3NzaGd1YXJkL3NzaGd1YXJkLmNvbmY= 1774125374.863787370 1758050700.000000000 root:root 0644 - -
ZXRj 1774124129.988147011 1771501908.000000000 root:root 0755 - - ZXRj 1774124129.988147011 1771501908.000000000 root:root 0755 - -
c3NoZ3VhcmQ= - - c3NoZ3VhcmQ= - -
ZXRjL3NzaGd1YXJkL3doaXRlbGlzdA== 1758050235.000000000 1758050235.000000000 root:root 0644 - - ZXRjL3NzaGd1YXJkL3doaXRlbGlzdA== 1758050235.000000000 1758050235.000000000 root:root 0644 - -

1
etc/sshguard/.gitignore vendored Normal file
View file

@ -0,0 +1 @@
/blacklist

12
etc/sshguard/sshguard.conf
View file

@ -2,10 +2,10 @@
# sshguard.conf -- SSHGuard configuration # sshguard.conf -- SSHGuard configuration
# Full path to backend executable (required, no default) # Full path to backend executable (required, no default)
BACKEND="/usr/libexec/sshg-fw-iptables" BACKEND="/usr/libexec/sshguard/sshg-fw-iptables"
# Space-separated list of log files to monitor. (optional, no default) # Space-separated list of log files to monitor. (optional, no default)
FILES="/var/log/core.slackware.uk.net/auth" FILES="/var/log/auth"
# Shell command that provides logs on standard output. (optional, no default) # Shell command that provides logs on standard output. (optional, no default)
# Example 1: ssh and sendmail from systemd journal: # Example 1: ssh and sendmail from systemd journal:
@ -26,21 +26,21 @@ BLOCK_TIME=86400
DETECTION_TIME=28800 DETECTION_TIME=28800
# Size of IPv6 subnet to block. Defaults to a single address, CIDR notation. (optional, default to 128) # Size of IPv6 subnet to block. Defaults to a single address, CIDR notation. (optional, default to 128)
IPV6_SUBNET=128 IPV6_SUBNET=64
# Size of IPv4 subnet to block. Defaults to a single address, CIDR notation. (optional, default to 32) # Size of IPv4 subnet to block. Defaults to a single address, CIDR notation. (optional, default to 32)
IPV4_SUBNET=32 IPV4_SUBNET=24
# Full path to PID file (optional, no default) # Full path to PID file (optional, no default)
PID_FILE=/run/sshguard.pid PID_FILE=/run/sshguard.pid
# Colon-separated blacklist threshold and full path to blacklist file. # Colon-separated blacklist threshold and full path to blacklist file.
# (optional, no default) # (optional, no default)
BLACKLIST_FILE=10:/var/lib/sshguard/blacklist BLACKLIST_FILE=10:/etc/sshguard/blacklist
# IP addresses listed in the WHITELIST_FILE are considered to be # IP addresses listed in the WHITELIST_FILE are considered to be
# friendlies and will never be blocked. # friendlies and will never be blocked.
WHITELIST_FILE=/etc/sshguard.whitelist WHITELIST_FILE=/etc/sshguard/whitelist
# If PARSER is unset, SSHGuard will use the installed sshg-parser as its # If PARSER is unset, SSHGuard will use the installed sshg-parser as its
# parser. Setting PARSER overrides this, so that you can use your own parser. # parser. Setting PARSER overrides this, so that you can use your own parser.