Hey guys!
I was wondering if there's a way to protect the SSH daemon that runs in a jail(since the jail doesn't have access to PF - no VNET). I don't do any NATs and stuff cause the server and the jails have IPs from the same class. ie. The IP of the server is 1.2.3.4 and the jail's IP 1.2.3.5. sshguard and I think blacklistd look for the auth logs and then decide to block the IP or not. Do I have to hack sshguard or blacklistd to look for multiple auth log locations?
Cheers!!
I was wondering if there's a way to protect the SSH daemon that runs in a jail(since the jail doesn't have access to PF - no VNET). I don't do any NATs and stuff cause the server and the jails have IPs from the same class. ie. The IP of the server is 1.2.3.4 and the jail's IP 1.2.3.5. sshguard and I think blacklistd look for the auth logs and then decide to block the IP or not. Do I have to hack sshguard or blacklistd to look for multiple auth log locations?
Cheers!!