]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 149d1ea) | patch
MFC r318755: Extend libblacklist support with new action types
authorlidl <lidl@FreeBSD.org>
Fri, 26 May 2017 15:13:46 +0000 (15:13 +0000)
committerlidl <lidl@FreeBSD.org>
Fri, 26 May 2017 15:13:46 +0000 (15:13 +0000)
commit243b4103d7fcf871f03992c82ea0446e5186f542
treeed8d6ba7fe3a2362ac4099a61f79946e0c82caadtree | snapshot
parent149d1ea2d9c026c1a135ce319469e744cae50f2acommit | diff
MFC r318755: Extend libblacklist support with new action types

The original blacklist library supported two notification types:
 - failed auth attempt, which incremented the failed login count
   by one for the remote address
 - successful auth attempt, which reset the failed login count
   to zero for that remote address

When the failed login count reached the limit in the configuration
file, the remote address would be blocked by a packet filter.

This patch implements a new notification type, "abusive behavior",
and accepts, but does not act on an additional type, "bad username".
It is envisioned that a system administrator will configure a small
list of "known bad usernames" that should be blocked immediately.

Sponsored by: The FreeBSD Foundation
contrib/blacklist/bin/blacklistd.c diff | blob | history
contrib/blacklist/include/bl.h diff | blob | history
contrib/blacklist/include/blacklist.h diff | blob | history
contrib/blacklist/lib/blacklist.c diff | blob | history
contrib/blacklist/lib/libblacklist.3 diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.