Changes - j0ke.net Open Build Service

Changes of Revision 13

[-] [+]	Changed	blocksshd.spec
@@ -1,6 +1,6 @@ Summary: Blocks brute force SSH attacks using iptables Name: blocksshd -Version: 1.1 +Version: 1.3 Release: 1 License: GPL Group: Applications/Internet @@ -103,6 +103,11 @@ /sbin/chkconfig --add blocksshd %changelog +* Fri Sep 05 2008 Carsten Schoene <cs@linux-administrator.com> +- update to blocksshd version 1.3 + - removed IPv6 support +- reworked config & init patches + * Tue Jan 22 2008 Carsten Schoene <cs@linux-administrator.com> - added more requirements - added configuration patch & sysconfig for redhat based systems
[-] [+]	Changed	blocksshd-redhat-config.diff ^
@@ -1,11 +1,11 @@ ---- blocksshd-1.1/blocksshd.conf.orig 2008-01-21 16:58:44.000000000 +0100 -+++ blocksshd-1.1/blocksshd.conf 2008-01-22 12:42:45.000000000 +0100 +--- blocksshd-1.3/blocksshd.conf.orig 2008-09-05 11:42:40.000000000 +0200 ++++ blocksshd-1.3/blocksshd.conf 2008-09-05 11:43:20.000000000 +0200 @@ -10,7 +10,7 @@ unblock => '1', # Enable unblocking unblock_timeout => '43200', # Time in seconds after which to unblock a blocked IP address restore_blocked => '0', # Turn on checking for previously blocked IPs -- log_ips => '/usr/local/etc/blocksshd.list', # Log file for blocked IPs -+ log_ips => '/var/log/blocksshd.list', # Log file for blocked IPs +- log_ips => '/etc/blocksshd.list', # Log file for blocked IPs ++ log_ips => '/var/log/blocksshd.list', # Log file for blocked IPs pid_file => '/var/run/blocksshd.pid', # Location of PID file send_email => '1', # Enable the sending of email notifications email => 'root', # Email address to send notifications
[-] [+]	Changed	blocksshd-redhat-init.diff ^
@@ -1,26 +1,15 @@ ---- blocksshd-1.1/init/blocksshd.orig 2008-01-22 12:45:13.000000000 +0100 -+++ blocksshd-1.1/init/blocksshd 2008-01-22 14:53:58.000000000 +0100 -@@ -30,7 +30,7 @@ - RETVAL=$? - echo - [ $RETVAL = 0 ] && touch /var/lock/subsys/blocksshd -- return $RETVAL -+ $STARTCMD - ;; +--- blocksshd-1.3/init/blocksshd.orig 2007-08-08 15:25:42.000000000 +0200 ++++ blocksshd-1.3/init/blocksshd 2008-09-05 11:46:23.000000000 +0200 +@@ -47,7 +47,7 @@ stop) - # Stop daemon. -@@ -39,8 +39,9 @@ - RETVAL=$? - echo - [ $RETVAL = 0 ] && rm -f /var/lock/subsys/blocksshd -+ $STOPCMD + stop ;; - reload) + reload\|restart) $0 stop $0 start exit $? -@@ -50,7 +51,7 @@ +@@ -57,7 +57,7 @@ echo ;; *)
[-] [+]	Changed	blocksshd-suse-config.diff ^
@@ -1,30 +1,30 @@ ---- blocksshd-1.1/blocksshd.conf.orig 2008-01-21 16:58:44.000000000 +0100 -+++ blocksshd-1.1/blocksshd.conf 2008-01-21 16:59:18.000000000 +0100 +--- blocksshd-1.3/blocksshd.conf.orig 2008-09-05 11:38:30.000000000 +0200 ++++ blocksshd-1.3/blocksshd.conf 2008-09-05 11:41:43.000000000 +0200 @@ -3,22 +3,22 @@ $cfg = { os => 'linux', # Target OS - either linux or bsd chain => 'blocksshd', # Name of iptables or pf chain - logfile => '/var/log/secure', # Log file to monitor -+ logfile => '/var/log/messages', # Log file to monitor ++ logfile => '/var/log/messages', # Log file to monitor logcheck => '10', # How often to check the log file max_attempts => '4', # Max number of failures timeout => '360', # Reset IP count if no activity after time out in seconds unblock => '1', # Enable unblocking unblock_timeout => '43200', # Time in seconds after which to unblock a blocked IP address restore_blocked => '0', # Turn on checking for previously blocked IPs -- log_ips => '/usr/local/etc/blocksshd.list', # Log file for blocked IPs -+ log_ips => '/var/log/blocksshd.list', # Log file for blocked IPs +- log_ips => '/etc/blocksshd.list', # Log file for blocked IPs ++ log_ips => '/var/log/blocksshd.list', # Log file for blocked IPs pid_file => '/var/run/blocksshd.pid', # Location of PID file send_email => '1', # Enable the sending of email notifications email => 'root', # Email address to send notifications - mail => '/bin/mail', # Location of mail binary -+ mail => '/usr/bin/mail', # Location of mail binary ++ mail => '/usr/bin/mail', # Location of mail binary email_whois_lookup => '1', # enable whois lookup of the blocked ip addres in the sent email whois => '/usr/bin/whois', # location of the whois binary -- sed => '/bin/sed', # location of the sed binary +- sed => '/bin/sed', # location of the sed binary - iptables => '/sbin/iptables', # Location of iptables binary - only for Linux + sed => '/usr/bin/sed', # location of the sed binary -+ iptables => '/usr/sbin/iptables', # Location of iptables binary - only for Linux ++ iptables => '/usr/sbin/iptables', # Location of iptables binary - only for Linux pfctl => '/sbin/pfctl', # Location of pfctl binary - only for BSD whitelist => [qw{ 127.0.0.1/32
	Added	blocksshd-1.3.tar.bz2 ^