-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEE7sBxPmxNSLEwQp4k5k1h0mWW9oAFAmBbiXoACgkQ5k1h0mWW
9oBitgf+I0XI8O8STzFuT2mX5JK6jC5HPpsYBqhDS0YXZRuLnrQMu56l+goDgEmY
3tLsZJExwxTOKyI5MGRWrWghrQlMFhsJV/s2wBulKDClD/aJjtZ+ihj26GfyPmiB
zkBB8l+rMkz6gJvO0tvUif7knAjpLXXP3pmjU6EJRJydvhhfI7HymBc/lXMhXxeF
z6tnbcom9VtYqIxDMYeqU0EkSeNsEV6sXDsiyx+taRxRhrO2oroSIJLQ3qp4m8/w
XYd1XmSbTUHQ4xtlm7ez8Y5YwrnM6tVIGqXnRue/vJAppzv90Y2m/jzSTuPwyLpQ
U8qImM8dRU0i5gjNmUVeGt15uWU5Sg==
=Fjqk
-----END PGP SIGNATURE-----
> 24. mar. 2021 kl. 19:33 skrev jeanpierre <jeanpierre@jeanpierredevilliers.xyz>:
>
> Does there exist an OpenBSD analogue for FreeBSD's blacklistd daemon?
>
> For the sake of completeness: blacklistd is a daemon that, using pf
> anchors, blocks connections from abusive hosts to parctiular services
> (e.g. sshd) until they start behaving themselves again.
>
> I find it very useful for timming down log files.
Not in the base system but you might want to take a peek at pf-badhosts (described among other places in this OpenBSD Journal article https://undeadly.org/cgi?action=article;sid=20210119113425 <https://undeadly.org/cgi?action=article;sid=20210119113425>) which should be fairly easy to adapt to using more or other sources such as the bsdly.net <http://bsdly.net/> feed maintained mainly by kind robots under supervision by yours truly (see https://bsdly.blogspot.com/2018/08/badness-enumerated-by-robots.html <https://bsdly.blogspot.com/2018/08/badness-enumerated-by-robots.html> and links therein and in the proximity)
Cheers,
Peter
—
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
No comments:
Post a Comment