Does sshlockout_pf actually work?
-
I never see any messages below even though I get tonnes of failed login attempts.
if (sscanf(str, "%d.%d.%d.%d", &n1, &n2, &n3, &n4) == 4) {
** syslog(LOG_ERR, "Illegal ssh login attempt, locking out %d.%d.%d.%d\n",
n1, n2, n3, n4);**
snprintf(buf, sizeof(buf), "/sbin/pfctl -t sshlockout -T add %d.%d.%d.%d",
n1, n2, n3, n4);
system(buf);
}