Sshguard

Open source tool for protecting hosts from brute force attacks against SSH
Download

Sshguard Ranking & Summary

Advertisement

  • Rating:
  • License:
  • Freeware
  • Price:
  • FREE
  • Publisher Name:
  • Mij
  • Publisher web site:
  • Operating Systems:
  • Mac OS X
  • File Size:
  • 148 KB

Sshguard Tags


Sshguard Description

Open source tool for protecting hosts from brute force attacks against SSH Sshguard supports IPv6, whitelists and log authentication, interfaces with all the major firewalling systems, has a remarkably clever log analyzer, and is independent, fast and lightweight as it's written in C.Sshguard is a free log monitor that protects networked hosts from today's widespread brute force attacks against services, most notably SSH. Sshguard detects such attacks and blocks the author's address with a firewall rule. Sshguard monitors servers from their logging activity. It reacts to messages about dangerous activity by blocking the source address with the local firewall.Messages describing "dangerous activity" can be easily customized. This makes sshguard usable with any server, and in general anything that logs something. Sshguard supports natively different attack targets, and has the ability to react differently depending on the target service. Sshguard can interpret log messages with several formats:· syslog entries· syslog-ng entries· metalog entries· multilog entries· raw log entriesSshguard has a powerful grammar-based parser that makes it straightforward to support several formats and services without increasing complexity. Several services are currently recognized:· sshd· dovecot· proftpd· pure-ftpd· FreeBSD ftpd· UWimap (imap, pop)Sshguard can operate all the major firewalling systems:· IPFIREWALL/ipfw (Mac OS X. FreeBSD)· PF (OpenBSD, FreeBSD, NetBSD, DragonFly BSD)· netfilter/iptables (Linux)· IPFILTER (FreeBSD, NetBSD, Solaris)· IBM AIX's firewall· tcpd's hosts.allow (boxes without a network-layer firewall)Sshguardsnatural scenario is sshguard feeded by syslog, but any combination works as long as sshguard is given log entries in its standard input. NOTE: To be able to build Sshguard on your Mac you will have to configure the source packages using the following commands in a Terminal window:./configure -with-firewall=ipfw make sudo make install Requirements: · Xcode (to build from source)


Sshguard Related Software

About SoftwareSea