| non port: security/sshguard/Makefile |
|
SVNWeb
|
Number of commits found: 60 |
|
Wed, 7 Sep 2022
|
[ 21:10 Stefan Eßer (se)  ]    b7f0544 (Only the first 10 of 27931 ports in this commit are shown above.  )
Add WWW entries to port Makefiles
It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.
Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.
There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above )
|
|
Wed, 20 Jul 2022
|
[ 14:22 Tobias C. Berner (tcberner) ] 857c05f (Only the first 10 of 840 ports in this commit are shown above. )
security: remove 'Created by' lines
A big Thank You to the original contributors of these ports:
* <ports@c0decafe.net>
* Aaron Dalton <aaron@FreeBSD.org>
* Adam Weinberger <adamw@FreeBSD.org>
* Ade Lovett <ade@FreeBSD.org>
* Aldis Berjoza <aldis@bsdroot.lv>
* Alex Dupre <ale@FreeBSD.org>
* Alex Kapranoff <kappa@rambler-co.ru>
* Alex Samorukov <samm@freebsd.org>
* Alexander Botero-Lowry <alex@foxybanana.com>
* Alexander Kriventsov <avk@vl.ru>
* Alexander Leidinger <netchild@FreeBSD.org> (Only the first 15 lines of the commit message are shown above )
|
|
Fri, 1 Apr 2022
|
[ 15:09 Dmitry Marakasov (amdmi3) ] dc24d94
security/sshguard: disable blacklisting by default
Blacklisting is now disabled by default to avoid overriding the setting in
sshguard.conf. To enable blacklisting, uncomment the BLACKLIST_FILE line in
sshguard.conf.
PR: 221602
Reported by: bahlgren@beah.se
Submitted by: kevinz5000@gmail.com
|
|
Mon, 4 Oct 2021
|
[ 04:15 Philip Paeps (philip) Author: Kevin Zheng ] c3381bf
security/sshguard: Fix memset() off-by-one
This bug causes a stack overflow (and crash due to failed stack check)
when certain IPv6 addresses are whitelisted on i386.
PR: 258179
Reported by: John Marshall <john@jmarshall.id.au>
MFH: 2021Q4
|
|
Mon, 14 Jun 2021
|
[ 21:20 Rodrigo Osorio (rodrigo) ] 5d22a66
security/sshguard: Upgrade to 2.4.2
Major changes:
* Recognize rejections from Postfix's postscreen daemon
* The parser can now be changed using the PARSER and POST_PARSER options
* Remove some false positive attack signatures for SSH and Cyrus
* Adjust log verbosity of some log messages
* The firewalld backend now uses firewall-cmd instead of iptables to flush
block lists
Full changelog :
https://bitbucket.org/sshguard/sshguard/src/v2.4.2/CHANGELOG.rst
PR: 256575
Reported by: <sirdice@gmail.com>
Approved by: Kevin Zheng <kevinz5000@gmail.com> (maintainer)
|
|
Tue, 6 Apr 2021
|
[ 14:31 Mathieu Arnold (mat) ] 305f148 (Only the first 10 of 29333 ports in this commit are shown above. )
Remove # $FreeBSD$ from Makefiles.
|
|
Sat, 15 Aug 2020
|
[ 19:31 swills ]  
security/sshguard: Update to 2.4.1
PR: 248404
Submitted by: Kevin Zheng <kevinz5000@gmail.com>
Approved by: maintainer timeout (dan.mcgregor@usask.ca, multiple timeouts)
|
|
Sun, 10 Nov 2019
|
[ 18:34 delphij ]
Remove redundant pidfile check.
This fixes an issue that SSHguard won't start after an incompelete
shutdown.
PR: ports/241751
Approved by: portmgr (bugfix blanket)
MFH: 2019Q4
|
|
Fri, 19 Jul 2019
|
[ 02:09 adamw ]
sshguard: Fix rc(8) script, broken in update and then broken further in followup
commits
Also clean up some comments while here.
PR: 238458
Submitted by: Kevin Zheng
|
|
Sat, 6 Jul 2019
|
[ 15:33 adamw ]
sshguard: Update to 2.4.0 and fix rc(8) script
There is some strange new behaviour on the rc script in 2.4.0. It
would either hang on start, or hang on stop. A custom stop function
seemed the easiest way to achieve both.
PR: 238458
|
|
Mon, 1 Jul 2019
|
[ 17:56 adamw ]
Back out r505456. sshguard 2.4.0 misbehaves
SSHGuard has always exited cleanly on FreeBSD. In 2.4.0, sshguard fixed that.
It is impossible to terminate sshguard without manually killing each process.
So, apologies to everyone who's already updated, but you'll have to manually
kill all the processes:
pkill -f sshguard
pkill -f sshg-
pkill -f tail
rm /var/run/sshguard.pid
So, back this out while awaiting upstream fix.
PR: 238458
|
[ 00:57 adamw ]
Fix rc(8) script process detection
The pidfile points to a process named sh, not sshg-blocker
PR: 238458
|
|
Sun, 30 Jun 2019
|
[ 19:50 swills ]
security/sshguard: update to 2.4.0
PR: 238458
Submitted by: Kevin Zheng <kevinz5000@gmail.com>
Approved by: maintainer timeout (dan.mcgregor@usask.ca, >2 weeks)
|
|
Fri, 29 Mar 2019
|
[ 12:24 garga ]
security/sshguard: Update to 2.3.1
PR: 236496
Approved by: maintainer timeout (> 2 weeks)
Sponsored by: Rubicon Communications, LLC (Netgate)
|
|
Fri, 28 Sep 2018
|
[ 11:20 garga ]
Update security/sshguard to 2.2.0
While here, break some long lines, Use INSTALL_DATA to install sample config
file since it's not supposed to be changed and re-generate patches using
`make makepatch`
PR: 230861
Approved by: maintainer timeout (> 1 month)
Obtained from: pfSense
Sponsored by: Rubicon Communications, LLC (Netgate)
|
|
Mon, 28 May 2018
|
[ 01:30 adamw ]
Increase the default blacklist threshold from 30 to 120, which is the upstream
default. 30 makes it far too easy to get locked out of your own server. 120 is
simply a safer starting point.
PR: 227016
Submitted by: Dan McGregor (maintainer)
MFH: 2018Q2
|
|
Thu, 18 Jan 2018
|
[ 01:15 dbaio ]
security/sshguard: Update to 2.1.0
Improve descriptions, pkg-message and update WWW.
Changes: https://sourceforge.net/p/sshguard/mailman/message/36109171/
PR: 224153
Submitted by: Kevin Zheng <kevinz5000@gmail.com>
Approved by: maintainer timeout (dan.mcgregor@usask.ca, > 2 weeks)
|
|
Mon, 24 Jul 2017
|
[ 10:56 woodsb02 ]
security/sshguard: Fix rc script, add UPDATING entry
sshguard usually looks at sshguard.conf for a list of files to monitor,
but lets you override it via the command line using -l arguments.
This change fixes an issue with the previous rc script which was
*always* setting the '-l' arguments even if sshguard_watch_logs wasn't
set in rc.conf.
This change also sets the defaults in the config file to match the
former defaults in the rc script, and adds an UPDATING entry to warn
of the change from default configuration via rc.conf the config file.
PR: 220906
Submitted by: Dan McGregor (maintainer)
Reported by: chris@cretaforce.gr
|
|
Thu, 20 Jul 2017
|
[ 15:34 feld ]
security/sshguard: Update to 2.0.0
PR: 219409
|
[ 13:53 feld ]
security/sshguard: reset MAINTAINER
|
|
Mon, 9 Jan 2017
|
[ 21:50 feld ]
security/sshguard: Update to 1.7.1
|
|
Mon, 29 Aug 2016
|
[ 19:55 feld ]
security/sshguard: Unbreak build by making a metaport
security/sshguard no longer provides hosts/TCP Wrappers support by
default as this was removed upstream. It is now a metaport which will
allow you to select a backend. Further details can be found in the
UPDATING entry.
|
|
Fri, 26 Aug 2016
|
[ 21:07 feld ]
security/sshguard: Update to 1.7.0
Changelog:
Added
Add sshg-logtail
Add sshg-parser
Control firewall using sshg-fw
Match "no matching key exchange method" for SSH
Deprecated
Hosts backend is deprecated
Logsuck (-l option) is deprecated, use sshg-logtail instead
Process validation (-f option) is deprecated
(Only the first 15 lines of the commit message are shown above )
|
|
Mon, 2 May 2016
|
[ 16:49 feld ]
security/sshguard: Update man page, fix sshguard_reset_interval default
Upstream responded to my submitted man page patch and indicated that
sshguard_reset_interval (-s) has been changed to 1800 (30 mins) as well.
|
[ 16:26 feld ]
security/sshguard: Update to 1.6.4
- Add PID file support back to rc script
- Rename some rc script parameters to better align with sshguard(8)
sshguard_safety_thresh -> sshguard_danger_thresh
sshguard_pardon_min_interval -> sshguard_release_interval
sshguard_prescribe_interval -> sshguard_reset_interval
Release notes:
This release brings updated signatures, usability improvements, and bug
fixes. Highlights in this release include:
- Match Postfix pre-authentication disconnects(Only the first 15 lines of the commit message are shown above )
|
|
Sat, 19 Mar 2016
|
[ 13:04 feld ]
security/sshguard: Add patch to prevent log flooding with error messages
PR: 208133
|
|
Tue, 8 Mar 2016
|
[ 16:20 feld ]
security/sshguard: Update to 1.6.3
Changelog: https://sourceforge.net/p/sshguard/mailman/message/34733464/
PR: 207511
Submitted by: <dcarmich@dcarmichael.net>
|
|
Tue, 15 Dec 2015
|
[ 21:18 feld ]
security/sshguard-pf Fix documentation URL in pkg-message
Submitted by: Johan <johan jails se>
|
|
Tue, 13 Oct 2015
|
[ 01:14 feld ]
security/sshgaurd: Update to 1.6.2
* Remove recommendation of using syslog pipes
* IPFW support has been rewritten and entries now are added to table 22
PR: 203452
|
|
Sat, 1 Aug 2015
|
[ 23:24 feld ]
security/sshguard: update to 1.6.1
|
|
Sun, 26 Jul 2015
|
[ 15:04 feld ]
security/sshguard-null
portable do-nothing backend for applying detection but not prevention
PR: 201323
|
|
Sun, 17 May 2015
|
[ 13:47 feld ]
Add patch to support syslog in verbose mode
This was previously a patch in the FreeBSD ports tree and was sent
upstream but did not make it into 1.6.0
Submitted by: gregp@n0qds.org
|
|
Tue, 5 May 2015
|
[ 01:59 feld ]
Update to 1.6.0
|
|
Tue, 24 Mar 2015
|
[ 02:23 feld ]
Restore lost changes to patch-src-parser-attack_scanner.l
PR: 197854
|
[ 02:11 feld ]
Enable matching of syslog entries with <facility.level>
PR: 197854
|
|
Fri, 23 Jan 2015
|
[ 20:15 feld ]
Patch parser to fix matching for Cyrus IMAP login attempts which are not
plaintext.
PR: 196943
Submitted by: jakob.alvermark@bsdlabs.com
|
|
Thu, 8 Jan 2015
|
[ 13:42 feld ]
Add ability to pass additional custom arguments to sshguard daemon via
sshguard_flags in rc.conf
Declare LICENSE while here
Submitted by: wjw@digiware.nl
|
|
Wed, 10 Dec 2014
|
[ 14:04 feld ] (Only the first 10 of 13 ports in this commit are shown above. )
Update "BSD" license in security category
|
|
Mon, 3 Nov 2014
|
[ 21:56 feld ]
Make it possible to run sshguard without blacklist database by setting
in rc.conf:
sshguard_blacklist=""
This may fix reliability for some users.
PR: 174018
|
|
Thu, 2 Oct 2014
|
[ 12:28 feld ]
The default pardon and prescribe settings in the rc script were swapped
and did not match the documentation. Users should tune to their needs
instead of relying on the defaults, but if they are this will be an
improvement.
Submitted by: John Vinopal
|
|
Thu, 22 May 2014
|
[ 13:17 feld ]
Adopting security/sshguard
rc script passes rclint
Removed clever built-in sysadmin countermeasure:
Previously sshguard would automatically add a line to your
/etc/syslog.conf file. You could activate sshguard by uncommenting this
line. However, every time you reinstall/update sshguard this line will
also be automatically removed rendering the program inactive and your
system unprotected.
Sponsored by: SupraNet Communications, Inc
|
|
Fri, 25 Apr 2014
|
[ 13:08 crees ]
Fix rc script, which I made a bit of a mess of. Really sorry :(
Submitted by: se
While here, add error checking in pkg-install before replacing
syslog.conf with an unknown file!
|
|
Tue, 8 Apr 2014
|
[ 19:03 crees ]
Fix old sshguard bug; does not detect ssh invalid users logins
PR: ports/174571
Submitted by: Francois Charlier <fcharlier@ploup.net>
Reset maintainer after 16 month timeout
While here, stage, remove some insanity and fixup rc script
|
|
Fri, 20 Sep 2013
|
[ 22:55 bapt ] (Only the first 10 of 1016 ports in this commit are shown above. )
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
|
|
Wed, 27 Jun 2012
|
[ 00:22 delphij ]
Add a rc.d script to daemonize sshguard.
Submitted by: delphij
PR: ports/166471
Approved by: maintainer timeout (~3 months)
|
|
Sun, 24 Jul 2011
|
[ 18:16 arved ]
Fix sshguared-ipfw -b option
PR: 157807
Submitted by: Dmitry <smallcms@gmail.com>
Approved by: maintainer timeout
|
|
Sun, 12 Jun 2011
|
[ 02:35 miwi ]
- Update to 1.5
PR: 155607
Submitted by: Matthias Fechner <idefix@fechner.net>
|
|
Sun, 10 Jan 2010
|
[ 00:36 danger ]
- update to 1.4
PR: ports/142469
Approved by: gabor, Maintainer
|
|
Sat, 22 Aug 2009
|
[ 00:35 amdmi3 ] (Only the first 10 of 349 ports in this commit are shown above. )
- Switch SourceForge ports to the new File Release System: categories starting
with P,R,S
|
|
Fri, 3 Oct 2008
|
[ 14:28 amdmi3 ]
- Update to 1.3, which also fixes build problem with autoconf
PR: 127599
Submitted by: Jeremy Johnston <jeremy at smart-serv dot net>
Suggested by: Mij <mij at bitchx dot it> (maintainer)
|
|
Tue, 23 Sep 2008
|
[ 18:58 amdmi3 ]
- Update to 1.2. Changes:
- support for Cyrus IMAP
- support for SSH "possible break-in attempt" messages
- updated support for dovecot to include logging format of new versions
- fix of IPF backend causing sshguard not to update /etc/ipf.rules (disallow
IPv6)
- fix detection of password when sshd doesn't log anything more than PAM
- While here, use SF macro
PR: 127456
Submitted by: Mij <mij at bitchx dot it> (maintainer)
|
|
Mon, 28 Jul 2008
|
[ 07:35 lwhsu ]
- Install man page to ${MANPREFIX}/man . Thanks to pav@ for notification
- Update description reflecting additions of version 1.1
PR: ports/126001
Submitted by: Mij <mij AT bitchx.it> (maintainer)
|
|
Sat, 26 Jul 2008
|
[ 13:49 lwhsu ]
- Update to 1.1
PR: ports/125973
Submitted by: Mij <mij AT bitchx.it> (maintainer)
|
|
Fri, 4 Jan 2008
|
[ 20:35 arved ]
Prevent the port from running automake if it is installed
PR: 118065
Submitted by: Mij <mij@bitchx.it>
|
|
Sun, 17 Jun 2007
|
[ 21:55 itetcu ]
- add patch for:
The regex used to recognize IPv6 addresses in security/sshguard{,-ipfw,-pf}
doesn't catch all IPv6 addresses. The author (and port maintainer) is aware of
this issue and supplied the patch, which fixes the issue. The patch will be
part of sshguard-1.1, which is due soonish.
- bump PORTREVISION
PR: 113800
Submitted by: Henrik Brix Andersen
Approved by: Mij (maintainer)
|
|
Tue, 12 Jun 2007
|
[ 22:13 itetcu ]
Shorten COMMENT
Submitted by: sat@
|
[ 22:09 itetcu ]
Allow slave ports to overwrite the COMMENT.
Submitted by: sat@
|
[ 20:05 itetcu ]
- upgrade to version 1.0
- the port is no longer interactive, it uses the default blocking backend
(hosts)
- for pf and ipfw see the new ports sshguard-[pf|ipfw]
PR: ports/112749
Submitted by: Mij (maintainer)
Reviewed by: leeym@
|
|
Thu, 1 Mar 2007
|
[ 10:06 clsung ]
- respect maintainer's insist on interactive part,
even IS_INTERACTIVE is discouraged
- PORTREVISION is thus bumped.
Approved by: maintainer (implicit)
|
[ 01:36 clsung ]
Add sshguard 0.91, protect networked hosts from brute force attacks
against ssh.
PR: ports/109439
Submitted by: Mij <mij at bitchx.it>
|
Number of commits found: 60 |
As an Amazon Associate I earn from qualifying purchases.