Page MenuHomeFreeBSD

Add blacklist support to sshd

Authored by lidl on Apr 11 2016, 4:17 PM.



Add blacklist support to sshd

Depends on D5912
Depends on D5913

Diff Detail

rS FreeBSD src repository - subversion
Automatic diff as part of commit; lint not applicable.
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

lidl retitled this revision from to Add blacklist support to sshd.
lidl updated this object.
lidl edited the test plan for this revision. (Show Details)
lidl added reviewers: rpaulo, emaste, gnn, des.
28 ↗(On Diff #15084)

Indeed, what is fd 3 here?

Updated to address emaste's comment, and log an error message when that condition arises.

I have never run into that condition in all my testing.

rpaulo edited edge metadata.
rpaulo added inline comments.
1 ↗(On Diff #16968)

Missing some kind of copyright.

22 ↗(On Diff #16968)

What exactly is "a" ? It's always 1. Please drop the variable if it's not really used.

1 ↗(On Diff #16968)

Missing copyright.

This revision is now accepted and ready to land.May 27 2016, 7:23 PM
1 ↗(On Diff #16968)

This is a verbatim import from NetBSD's patches, but doesn't have a copyright on it. I guess I should put on the NetBSD copyright, and have Christos augment the upstream diffs.

22 ↗(On Diff #16968)

It's the action (zero = successful login), (one = failed login).

Ideally, the code would also send successful login to zero out any bad login counts that are in progress.

e.g. - two failed logins from an IP address, and then a successful login would reset the running count of failed logins to zero for that IP address.

lidl edited edge metadata.
lidl removed rS FreeBSD src repository - subversion as the repository for this revision.

Added NetBSD copyrights to appropriate files.
Rename 'a' variable to 'action' to better reflect its usage.

This revision now requires review to proceed.Jun 3 2016, 3:39 AM
This revision was automatically updated to reflect the committed changes.