Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

sshguard-2.4.2-2.2 RPM for armv7hl

From OpenSuSE Ports Tumbleweed for armv7hl

Name: sshguard Distribution: openSUSE Tumbleweed
Version: 2.4.2 Vendor: openSUSE
Release: 2.2 Build date: Thu May 27 16:03:46 2021
Group: Productivity/Networking/Security Build host: obs-arm-6
Size: 1736199 Source RPM: sshguard-2.4.2-2.2.src.rpm
Packager: http://bugs.opensuse.org
Url: https://www.sshguard.net/
Summary: SSH brute force attack protector
Sshguard protects networked hosts from brute force attacks
against ssh servers. It detects such attacks and blocks the
attacker's address with a firewall rule.

Provides

Requires

License

ISC

Changelog

* Sun May 16 2021 Enrico Belleri <idesmi@protonmail.com>
  - Changed 'BACKEND' to "/usr/libexec/sshg-fw-iptables" from incorrect syntax
* Wed May 12 2021 Ferdinand Thiessen <rpm@fthiessen.de>
  - Update to version 2.4.2
    * Recognize rejections from Postfix's postscreen daemon
    * The parser can now be changed using the 'PARSER' and
      'POST_PARSER' options
    * Remove some false positive attack signatures for SSH and Cyrus
    * Adjust log verbosity of some log messages
    * The *firewalld* backend now uses *firewall-cmd* instead of
      'iptables' to flush block lists
* Wed Aug 26 2020 Joop Boonen <joop.boonen@opensuse.org>
  - Build version 2.4.1
    * Recognize RFC 5424 syslog banners
    * Recognize busybox syslog -S banners
    * Recognize rsyslog banners
    * Recognize web services TYPO3, Contao, and Joomla
    * Update signatures for Dovecot
    * Update signatures for OpenSSH
    * Whitelist entire 127.0.0.0/8 and ::1 block
    * Whitelist file allows inline comments
    * Fix FILES and LOGREADER configuration file options
  - boo#1124121
* Tue Jun 11 2019 Joop Boonen <joop.boonen@opensuse.org>
  - Build version 2.4.0
    * Match "Failed authentication attempt" for Gitea
    * Log human-readable service names instead of service code
    * Correctly terminate child processes when sshguard is killed
    * No longer accept logs given via standard input
* Wed Feb 06 2019 joop.boonen@opensuse.org
  - Removed not needed files and service files
    as sshguard can now parse journal files
  - /etc/sysconfig/sshguard is not used any more
    as sshguard uses it's own config file
* Mon Feb 04 2019 Jan Engelhardt <jengelh@inai.de>
  - Use noun phrase in summary.
  - Join %service_* to reduce generated boilerplate.
* Thu Jan 24 2019 liedke@rz.uni-mannheim.de
  - Build version 2.3.1
    * Fix OpenSSH "Did not receive identification string"
    * Fix syslog banner detection on macOS
  - Build version 2.3.0
    * Add signatures for Courier IMAP/POP and OpenVPN
    * Add signatures for TLS failures against Cyrus IMAP
    * Match more attacks against SSHD, Cockpit, and Dovecot
    * Update SSH invalid user signature for macOS
    * Add to and remove from ipfw table quietly
    * Reduce "Connection closed... [preauth]" score to 2
    * Switch ipsets to hash:net
    * Don't recreate existing ipsets
    * Match more log banners (Fix greedy SYSLOG_BANNER)
  - Build version 2.2.0
    * Add '--disable-maintainer-mode' in configure for package maintainers
    * BusyBox log banner detection
    * Match Exim "auth mechanism not supported"
    * Match Exim "auth when not advertised"
    * Match Postfix greylist early retry
    * OpenSMTPD monitoring support
    * Recognize IPv6 addresses with interface name
    * Ignore CR in addition to LF
    * Only log attacks if not already blocked or whitelisted
    * Use correct signal names in driver shell script
  - Build version 2.1.0
    * Add nftables backend
    * Add monitoring support for new service: Cockpit, Linux server dashboard
    * Match "maximum authentication attempts" for SSH
    * Match Debian-style "Failed password for invalid user" for SSH
    * Add monitoring support for new service: Common webserver probes, in
      Common Log Format
    * Match 'Disconnecting invalid user' for SSH
    * Add monitoring support for new service: WordPress, in Common Log Format
    * Add monitoring support for new service: SSHGuard
    * Firewall backends now support blocking subnets.
    * Add new IPV6_SUBNET and IPV4_SUBNET configuration options. Defaults
      to traditional single-address blocking.
    * Add monitoring support for new service: OpenSMTPD
    * Log whitelist matches with higher priority
    * Match port number in "invalid user" attack
    * FirewallD backend reloads firewall configuration less often.
  - Build version 2.0.0
    * Add firewalld backend
    * Add ipset backend
    * Annotate logs using -a flag to sshg-parser
    * Match "no matching cipher" for SSH
    * Preliminary support for Capsicum and pledge()
    * Resurrect ipfilter backend
    * Support reading from os_log on macOS 10.12 and systemd journal
    * Add warning when reading from standard input
    * Build and install all backends by default
    * Improve log messages and tweak logging priorities
    * Runtime flags now configurable in the configuration file
    * SSHGuard requires a configuration file to start
    * Remove process validation (-f option)
    * Fix ipfw backend on FreeBSD 11
    * Fix initial block time
    * Update Dovecot pattern for macOS
    * Use standard score for Sendmail auth attack
* Thu Nov 08 2018 joop.boonen@opensuse.org
  -  Corrected the service scripts, start after network.target
* Thu Nov 23 2017 rbrown@suse.com
  - Replace references to /var/adm/fillup-templates with new
    %_fillupdir macro (boo#1069468)
* Wed Mar 01 2017 joop.boonen@opensuse.org
  - Add a systemd journal tail so sshguard can parse this file

Files

/etc/sshguard
/etc/sshguard.conf
/etc/sshguard/whitelist
/usr/lib/systemd/system/sshguard.service
/usr/libexec/sshg-blocker
/usr/libexec/sshg-fw-firewalld
/usr/libexec/sshg-fw-hosts
/usr/libexec/sshg-fw-ipfilter
/usr/libexec/sshg-fw-ipfw
/usr/libexec/sshg-fw-ipset
/usr/libexec/sshg-fw-iptables
/usr/libexec/sshg-fw-nft-sets
/usr/libexec/sshg-fw-null
/usr/libexec/sshg-fw-pf
/usr/libexec/sshg-logtail
/usr/libexec/sshg-parser
/usr/sbin/rcsshguard
/usr/sbin/sshguard
/usr/share/doc/packages/sshguard
/usr/share/doc/packages/sshguard/CHANGELOG.rst
/usr/share/doc/packages/sshguard/README.rst
/usr/share/doc/packages/sshguard/doc
/usr/share/doc/packages/sshguard/doc/sshguard-setup.7
/usr/share/doc/packages/sshguard/doc/sshguard-setup.7.rst
/usr/share/doc/packages/sshguard/doc/sshguard.8
/usr/share/doc/packages/sshguard/doc/sshguard.8.rst
/usr/share/doc/packages/sshguard/doc/sshguard.dot
/usr/share/doc/packages/sshguard/examples
/usr/share/doc/packages/sshguard/examples/net.sshguard.plist
/usr/share/doc/packages/sshguard/examples/sshguard.conf.sample
/usr/share/doc/packages/sshguard/examples/sshguard.service
/usr/share/doc/packages/sshguard/examples/whitelistfile.example
/usr/share/licenses/sshguard
/usr/share/licenses/sshguard/COPYING
/usr/share/man/man7/sshguard-setup.7.gz
/usr/share/man/man8/sshguard.8.gz
/var/lib/sshguard
/var/lib/sshguard/db


Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Dec 3 23:48:33 2021