svn commit: r492748 - in head/security/bruteforceblocker: . files
Kurt Jaeger
pi at FreeBSD.org
Tue Feb 12 04:24:47 UTC 2019
Author: pi
Date: Tue Feb 12 04:24:46 2019
New Revision: 492748
URL: https://svnweb.freebsd.org/changeset/ports/492748
Log:
security/bruteforceblocker: update patterns
- Update patterns to make them match with log messages from recent
version of OpenSSH
- Remove LICENSE=NONE
PR: 234137
Submitted by: Yasuhiro KIMURA <yasu at utahime.org>
Approved by: danger (maintainer timeout)
Added:
head/security/bruteforceblocker/files/patch-bruteforceblocker.pl (contents, props changed)
Modified:
head/security/bruteforceblocker/Makefile
Modified: head/security/bruteforceblocker/Makefile
==============================================================================
--- head/security/bruteforceblocker/Makefile Tue Feb 12 01:58:38 2019 (r492747)
+++ head/security/bruteforceblocker/Makefile Tue Feb 12 04:24:46 2019 (r492748)
@@ -3,23 +3,23 @@
PORTNAME= bruteforceblocker
PORTVERSION= 1.2.6
+PORTREVISION= 1
CATEGORIES= security
MAINTAINER= danger at FreeBSD.org
COMMENT= Checks for SSH bruteforce and blocks given IPs
-LICENSE= NONE
-
RUN_DEPENDS= p5-Unix-Syslog>=0:sysutils/p5-Unix-Syslog \
p5-Sys-Hostname-Long>=0:sysutils/p5-Sys-Hostname-Long \
p5-libwww>=0:www/p5-libwww \
p5-Net-DNS>=0:dns/p5-Net-DNS
+USES= perl5 shebangfix
USE_GITHUB= yes
GH_ACCOUNT= dgerzo
-NO_BUILD= yes
-USES= perl5 shebangfix
USE_PERL5= run
+
+NO_BUILD= yes
OPTIONS_DEFINE= DOCS
Added: head/security/bruteforceblocker/files/patch-bruteforceblocker.pl
==============================================================================
--- /dev/null 00:00:00 1970 (empty, because file is newly added)
+++ head/security/bruteforceblocker/files/patch-bruteforceblocker.pl Tue Feb 12 04:24:46 2019 (r492748)
@@ -0,0 +1,22 @@
+--- bruteforceblocker.pl.orig 2018-12-18 11:17:19 UTC
++++ bruteforceblocker.pl
+@@ -79,13 +79,13 @@ my $res = Net::DNS::Resolver->new;
+ while (<>) {
+ if (/.*Failed password.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) port.*/i ||
+ /.*Failed keyboard.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) port.*/i ||
+- /.*Invalid user.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn})$/i ||
+- /.*Did not receive identification string from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn})$/i ||
+- /.*Bad protocol version identification .* from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn})$/i ||
++ /.*Invalid user.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) port.*/i ||
++ /.*Did not receive identification string from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) port.*/i ||
++ /.*Bad protocol version identification .* from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) port.*/i ||
+ /.*User.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) not allowed because.*/i ||
+- /.*error: maximum authentication attempts exceeded for.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}).*/i ||
+- /.*error: PAM: authentication error for.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}).*/i ||
+- /.*fatal: Unable to negotiate with ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}).*/i) {
++ /.*error: maximum authentication attempts exceeded for.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) port.*/i ||
++ /.*error: PAM: authentication error for.*from ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) port.*/i ||
++ /.*Unable to negotiate with ($work->{ipv4}|$work->{ipv6}|$work->{fqdn}) port.*/i) {
+
+ my $IP = $1;
+ if ($IP =~ /$work->{fqdn}/i) {
More information about the svn-ports-all
mailing list