Configuring blacklistd

To: netbsd-users <netbsd-users%netbsd.org@localhost>
Subject: Configuring blacklistd
From: Mayuresh <mayuresh%acm.org@localhost>
Date: Tue, 22 May 2018 08:06:19 +0530

Trying to set up blacklistd after trying to tinker with fail2ban and
sshguard without luck.

Have done the following so far:


1. Copied from examples to /etc/npf.conf and just modified interface name
in ext_if to actual one on my system.


2. In /etc/blacklist.conf I have just one entry (for testing):

[local]

[remote]
ssh     stream  *       *       *       1       1h


3. In /etc/rc.conf I have
blacklistd=YES
npf=YES

and both are started.


4. Watching "blacklistctl dump -da" or "npfctl list" which are showing
nothing, though there are candidates in authlog.


5. Also curious, how do I confirm whether my ssh server is compatible with
blacklistd (patched)? I am using the one from base of 8.0_RC1 amd64.


Would appreciate help.

Mayuresh

Follow-Ups:
- Re: Configuring blacklistd
  - From: Mayuresh

Prev by Date: Re: security/sshguard firewall option preferred on NetBSD
Next by Date: Re: sshguard fails to start
Previous by Thread: sshguard fails to start
Next by Thread: Re: Configuring blacklistd
Indexes:

Home | Main Index | Thread Index | Old Index