HomeFreeBSD
Diffusion FreeBSD src repository 53dc967db74f

openssh: blocklist: Use NetBSD probes
53dc967db74f
Actions

Description

openssh: blocklist: Use NetBSD probes

Use NetBSD probe locations for consistency. We have submitted all
improved or missing probes, keeping them synchronized with NetBSD (our
blocklist upstream) should simplify upgrades and maintenance, as the
locations of these probes are a moving target, depending on upstream
OpenSSH changes.

Additionally, use BLACKLIST_AUTH_FAIL exclusively for now. At the time
of this commit BLACKLIST_BAD_USER, is a no-op. However, it will change
in a future upgrade.

Also, enhance blacklist notification messages for better debugging by
making them more descriptive.

Reviewed by: emaste
Approved by: emaste (mentor)
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D52749

(cherry picked from commit e02003bce726333872d65b7b9a1557d97b6d91a0)

Details

Provenance
jlduranAuthored on Sep 29 2025, 4:32 PM
Reviewer
emaste
Differential Revision
D52749: openssh: blocklist: Use NetBSD probes
Parents
rGec4771b17b42: ftpd: blocklist: Add a permission denied probe
Branches
Unknown
Tags
Unknown

Changes (6)

PathSize
crypto/
openssh/

rG53dc967db74f

View Options

crypto/openssh/auth-pam.c

Loading...
View Options

crypto/openssh/auth.c

Loading...
View Options

crypto/openssh/auth2.c

Loading...
View Options

crypto/openssh/monitor.c

Loading...
View Options

crypto/openssh/packet.c

Loading...
View Options

crypto/openssh/sshd-session.c

Loading...