I wrote a small bash script that parses my /var/log/auth.log, creates an array of IP addresses that have "exceeded maximum authentication attempts", cross references those to pfctl -t bruteforce -T show and adds any new addresses in the log file to the bruteforce persist file... I've done this...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.