security/sshguard 1.6.0

Mark Felder feld at FreeBSD.org
Tue May 5 18:05:33 UTC 2015


Hi all,

I recently updated sshguard to 1.6.0. In the changelog it mentions
improved detection for SSH connections:

- - Match SSH login failures with "via" suffix
- - Update SSH "Bad protocol" signature

This seems to detect when a machine connects to port 22 but doesn't try
to login. This is what you might expect your monitoring server to do. As
a result, your monitoring server will likely end up on the sshguard ban
list like mine did. Make sure your monitoring server is whitelisted in
the firewall or that you're using the whitelist functionality that
sshguard provides. :-)


More information about the freebsd-questions mailing list