[security/sshguard] Are default intervals toggled?
bsam at passap.ru
Fri Nov 23 17:05:50 UTC 2012
there are two valuse at the port's RC script:
# sshguard_pardon_min_interval (int):
# Minimum pardon interval. Set to "1200"
# by default.
# sshguard_prescribe_interval (int):
# Prescribe interval. Set to "420" by
This seems to contradict with the man and sources:
/* default: minimum seconds after which unblocking a blocked IP. Max is
#define DEFAULT_PARDON_THRESHOLD (7 * 60)
/* default seconds after which forgiving a cracker candidate */
#define DEFAULT_STALE_THRESHOLD (20 * 60)
The man page:
-p secs release a blocked address no sooner than secs seconds after
being blocked for the first time. sshguard will release the
address between X and 3/2 * X seconds after blocking it.
-s secs forget about an address after secs seconds. If host A
attack every this many seconds, it will never be blocked.
If I'm not mistaken those two values should be toggled at the RC script.
Or am I lost with those therms/variable names?
WBR, Boris Samorodov (bsam)
FreeBSD Committer, http://www.FreeBSD.org The Power To Serve
More information about the freebsd-ports