Bug#284806: ITP: authfail -- Netfilter REJECT/DROP for hosts with too many "auth failure"
Package: wnpp
Severity: wishlist
* Package name : authfail
Version : 1.0.1
Upstream Author : Bartosz M. Krajnik <bartek@bmk.bz>
* URL : http://www.bmk.bz/authfail/
* License : GPL
Description : Netfilter REJECT/DROP for hosts with too many "auth failure"
This program reads data from FIFO file and adds REJECT/DROP for hosts
into Netfilter after some attempts of failed logins.
If someone tries to log into your system and you see many "authentication
failure" in you auth.log from one IP, you just add this IP into your
ACL.
If anybody is interested in this little piece of code, a draft package
exist on http://olivier-lemaire.org/debian/dists/sarge/main/ ...
I'll upload source to mentors in an minute.
Interested in any comments about this package (my first debian package
using init.d scripts: I'm still discovering the great dbhelper).
-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.4.27-1-386
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
Cheers,
--
Olivier LEMAIRE, aka LEM
http://olivier-lemaire.org/
Reply to: