I am attempting to install sshdfilter on my ubuntu 10.4 LTS machine. This package is supposed to block ssh-bruteforce attacks. It does that by adding blocking rules to iptables when multiple bad ssh logins are detected, and blocks the ip that initiated them.
This package usually relies on /var/log/sshd.fifo, but in ubuntu the file is called /var/log/auth.log, so I created a symlink
sudo ln -s /var/log/auth.log /var/log/sshd.fifo
After doing that I continued the installation by the excellent instructions here.
Unfortunately, I have no idea how to test if it is really working! :-(
Any ideas hot to test it?
Thanks a log,
1 Year Ago
Related Article:Ubuntu 10.4 wont detect Wireless Networks
is a Linux and Unix discussion thread by HoneyBadger that has 2 replies, was last updated 1 year ago and has been tagged with the keywords: networking.