Request for a sponsor and a review of: pam_abl
Oliver Falk
oliver at linux-kernel.at
Tue Jul 12 08:00:19 UTC 2005
On 07/11/2005 06:42 PM, Alexander Dalloz wrote:
> Hello fellows!
>
> I kindly request for a sponsorship and like to introduce myself with a
> small package contribution, called pam_abl.
>
> pam_abl provides auto blacklisting of hosts and users responsible for
> repeated failed authentication attempts. Generally configured so that
> blacklisted users still see normal login prompts but are guaranteed to
> fail to authenticate. A command line tool allows to query or purge the
> databases used by the pam_abl module.
>
> The home of the software is:
>
> http://www.hexten.net/sw/pam_abl/
>
> In my humble opinion this PAM module is useful in time when many of use
> get hit by massive SSH connection attempts, even dictionary attacks. It
> has some more flexibility (wider range of configuration) above pam_tally
> (faillog).
>
> SRC.RPM and SPEC file can be taken for a review from:
>
> http://www.uni-x.org/pam_abl-0.2.2-20050110.src.rpm
> http://www.uni-x.org/pam_abl.spec
>
> I hope I can come up with a few more packages for Extras soon.
>
> Alexander
>
> (can be reached on freenode as "Zerberus")
Tried this, but get the following, if I enable pam_abl in system-auth:
Jul 12 09:53:24 moon sshd[1944]: PAM unable to resolve symbol:
pam_sm_open_session
Jul 12 09:53:24 moon sshd[1944]: PAM unable to resolve symbol:
pam_sm_close_session
:-/
Specfile:
* Release should be 1%{?dist}
* You should not make
* rpmlint complains:
W: pam_abl non-standard-group Base
E: pam_abl hardcoded-library-path in /lib/security/$ISA/pam_abl.so
* Do not add an 'install howto' in the description.
So far... For sure there are other things as well, but I had no closer
look at the pkg, since it doesn't work here... :-/
Best,
Oliver
More information about the fedora-extras-list
mailing list