Mar 08

SSHGuard 2.0.0 release announcement

SSHGuard 2.0.0 has been released, and here are the highlights:

Added

  • Support reading from os_log on macOS 10.12 and systemd journal
  • Add firewalld backend (tutorial)
  • Add ipset backend
  • Resurrect the ipfilter backend
  • Preliminary support for Capsicum and pledge()
  • Match “no matching cipher” for SSH
  • Annotate logs using -a flag to sshg-parser

Changed

  • SSHGuard requires a configuration file to start
  • Runtime flags now configurable in the sshguard.conf configuration file
  • Add warning when reading from standard input
  • Build and install all backend scripts by default
  • Improve log messages and tweak logging priorities

Removed

  • Remove process validation (-f option)

Fixed

  • Fix ipfw backend on FreeBSD 11
  • Fix initial block time being doubled
  • Update Dovecot pattern for macOS
  • Use standard score for Sendmail auth attack

You can get the latest release of SSHGuard from Sourceforge, and learn more on the SSHGuard website.

There has been a lot of changes to how SSHGuard is configured in this release. Most notable, piped commands and runtime flags should be moved from the init script to the permanent configuration file. The release contains example configurations for systemd and the journal on Linux, launchd and os_log on macOS, as well as a fully documented sshguard.conf in examples/.

Maintainers and distributors should make sure they update their distribution-specific configurations accordingly.

Ideas? Contributions? Bugs? Questions? Reach out through the bug tracker or mailing lists!

Lates Releases View all»

  • Latest releases Latest releases are available from SourceForge. See 'News'.
  • sshguard 1.5 This is a milestone release, coming after 18 months ...
  • sshguard 1.5 Sshguard monitors services through their logging activity. It reacts ...

F.A.Q. View all»