On Thu, Jul 27 2017, Vadim Zhukov <persgray@gmail.com> wrote:
> 2017-07-27 2:04 GMT+03:00 Jeremie Courreges-Anglas <jca@wxcvbn.org>:
>> On Wed, Jul 26 2017, Jeremie Courreges-Anglas <jca@wxcvbn.org> wrote:
>>> On Wed, Jul 26 2017, Jeremie Courreges-Anglas <jca@wxcvbn.org> wrote:
>>>> Hi,
>>>>
>>>> I heard some interest over sshlockout(8), which is part of DragonFlyBSD.
>>>>
>>>> From https://www.dragonflydigest.com/2017/07/25/20005.html:
>>>>
>>>> "sshlockout(8) will now lock out based on number of attempts, just so
>>>> that you don't have huge logs of stubborn but stupid SSH brute force
>>>> attacks."
>>>>
>>>> I got curious and decided to create a port (untested so far). This
>>>> could be added to the tree if I get positive reports.
>>>
>>> Updated tarball, now uses pledge("stdio proc exec", NULL). Lightly
>>> tested.
>>
>> - add NO_TEST = Yes
>> - add a comment above MASTER_SITES about the source of the snapshot
>>
>> Any reviewer around? :)
>
> Looks good enough for me. Any chance pledge(2) call gets into upstream? :)
afaik the upstream repo is the base system of DragonFlyBSD. I doubt
they'll take diffs to add #ifdefs for system features they don't
support; and I don't think we would gain much from having this code
upstream if upstream can't test it anyway.
--
jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE
No comments:
Post a Comment