Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    sshguard exiting with status 1

    Scheduled Pinned Locked Moved
    2.5 Development Snapshots (Retired)
    2
    2
    269
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      A Former User
      last edited by

      Noticed in my logs (and in others) that sshguard is exiting with error code 1.

      syslogd 	Logging subprocess xxxxx (exec /usr/local/sbin/sshguard) exited with status 1.

      looking further into sbin/sshguard, that exit code is related to missing either FILES or LOGREADER in the conf file created by inc/syslog.inc. According to the sample conf, neither FILE or LOGREADER have default values, but the FILES statement is not commented out, suggesting it or LOGREADER is required.

      Adding the following to /etc/inc/syslog.inc causes the sshguard.conf to be formed correctly and eliminates the message:

      $sshguard_config[] = 'FILES="/var/log/auth.log /var/log/maillog"' . "\n";
      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        I've been seeing this as well. It shouldn't be pointed at a log file directly since we call it from syslogd. Something must have changed in its config recently to trigger the error. I opened https://redmine.pfsense.org/issues/9971 to look into it.

        Thanks!

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.