[Bug 270928] Blacklistd does not handle SSHD failed logins
- In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 270928] Blacklistd does not handle SSHD failed logins"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Thu, 25 Jan 2024 07:04:01 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=270928 Jose Luis Duran <jlduran@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jlduran@gmail.com --- Comment #3 from Jose Luis Duran <jlduran@gmail.com> --- Another option could be to avoid passing BLACKLIST_BAD_USER (BL_BADUSER) to BLACKLIST_NOTIFY, since per libblacklist(3) it is not supported yet. As you suggest, we could use BLACKLIST_AUTH_FAIL (BL_ADD). This way, we do not modify contrib/blocklist, but rather our own patches under crypto/openssh (crypto/openssh/auth.c and crypto/openssh/auth-pam.c). However, I was not able to reproduce this issue. Invalid attempts were effectively blocked (tested using pf and ipfw, following a basic guide: https://people.freebsd.org/~lidl/blacklistd.html). I wonder if it may have been fixed in bug #264599. -- You are receiving this mail because: You are the assignee for the bug.