Add sshguard 0.91, protect networked hosts from brute force attacks

against ssh. PR: ports/109439 Submitted by: Mij <mij at bitchx.it>
svn path=/head/; revision=186233
2007-03-01 01:36:56 +00:00 · 2007-03-01 01:36:56 +00:00 · 761d545251 · 2021-03-31 03:12:20 +00:00
commit 761d545251
parent 062a21e705
4 changed files with 59 additions and 0 deletions
--- a/security/Makefile
+++ b/security/Makefile
@ -678,6 +678,7 @@
    SUBDIR += ssh2-nox11
    SUBDIR += ssh_askpass_gtk2
    SUBDIR += sshblock
+    SUBDIR += sshguard
    SUBDIR += sshit
    SUBDIR += sslproxy
    SUBDIR += sslsniffer
--- a/security/sshguard/Makefile
+++ b/security/sshguard/Makefile
@ -0,0 +1,43 @@
+# New ports collection makefile for:	sshguard
+# Date created:		2007-02-22
+# Whom:			Mij <mij@bitchx.it>
+#
+# $FreeBSD$
+#
+
+PORTNAME=	sshguard
+PORTVERSION=	0.91
+CATEGORIES=	security
+MASTER_SITES=	${MASTER_SITE_SOURCEFORGE}
+MASTER_SITE_SUBDIR=	${PORTNAME}
+
+MAINTAINER=	mij@bitchx.it
+COMMENT=	Protect networked hosts from brute force attacks against ssh
+
+PLIST_FILES=	sbin/sshguard
+
+USE_BZIP2=	yes
+GNU_CONFIGURE=	yes
+
+OPTIONS=	PF	"Use PF as firewall backend"	on \
+		IPFW	"Use IPFW as firewall backend"	off
+
+.include <bsd.port.pre.mk>
+
+.if !defined(WITH_PF) && defined(WITH_IPFW)
+# compile with IPFW support
+CONFIGURE_ARGS+=	--with-firewall=ipfw
+.else
+# compile with PF support
+CONFIGURE_ARGS+=	--with-firewall=pf
+.endif
+
+post-install:
+	# spare pkg-message
+	${ECHO_MSG} "		Sshguard installed successfully."
+	${ECHO_MSG} "Make it active by putting in /etc/syslog.conf something like:"
+	${ECHO_MSG} "	auth.info;authpriv.info     |exec ${PREFIX}/sbin/sshguard"
+	${ECHO_MSG} "Otherwise, run sshguard standalone with (as root):"
+	${ECHO_MSG} "	tail -n 0 -f /var/log/auth.log | ${PREFIX}/sbin/sshguard"
+
+.include <bsd.port.post.mk>
--- a/security/sshguard/distinfo
+++ b/security/sshguard/distinfo
@ -0,0 +1,3 @@
+MD5 (sshguard-0.91.tar.bz2) = e6fb218fe2450f14b38ae5c5b67f0b6a
+SHA256 (sshguard-0.91.tar.bz2) = c1e16d1d20ff192e0368bd8ddfe6acede5a90fef10ce0558655bacf62c29c42f
+SIZE (sshguard-0.91.tar.bz2) = 63751
--- a/security/sshguard/pkg-descr
+++ b/security/sshguard/pkg-descr
@ -0,0 +1,12 @@
+Sshguard monitors ssh servers from their logging activity. It reacts to messages
+about dangerous activity by blocking the source address with the local firewall.
+
+Sshguard can operate all the major firewalling systems:
+* PF (OpenBSD, FreeBSD, NetBSD, DragonFly BSD)
+* netfilter/iptables (Linux)
+* IPFIREWALL/ipfw (FreeBSD, Mac OS X)
+
+Sshguard is reliable, easy to set up and demands very few resources to the
+system.
+
+WWW: http://sshguard.sourceforge.net