Mercurial > dropbear
diff options.h @ 246:f4cf0415fec1 contrib-blacklist
- blacklisting patch from Michael Deiters
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Tue, 06 Sep 2005 04:52:46 +0000 |
| parents | 9089929fb2b7 |
| children | c07de41b53d7 |
line wrap: on
line diff
--- a/options.h Fri Jul 08 19:20:10 2005 +0000 +++ b/options.h Tue Sep 06 04:52:46 2005 +0000 @@ -22,6 +22,9 @@ #define RSA_PRIV_FILENAME "/etc/dropbear/dropbear_rsa_host_key" #endif +/* File to store blacklisted IPs */ +#define BLACKLISTFILE "/var/dropbear/blacklist" + /* Set NON_INETD_MODE if you require daemon functionality (ie Dropbear listens * on chosen ports and keeps accepting connections. This is the default. * @@ -122,8 +125,8 @@ * but there's an interface via a PAM module - don't bother using it otherwise. * You can't enable both PASSWORD and PAM. */ -#define ENABLE_SVR_PASSWORD_AUTH -/*#define ENABLE_SVR_PAM_AUTH*/ +//#define ENABLE_SVR_PASSWORD_AUTH +#define ENABLE_SVR_PAM_AUTH #define ENABLE_SVR_PUBKEY_AUTH #define ENABLE_CLI_PASSWORD_AUTH @@ -161,7 +164,7 @@ /* Maximum number of failed authentication tries (server option) */ #ifndef MAX_AUTH_TRIES -#define MAX_AUTH_TRIES 10 +#define MAX_AUTH_TRIES 2 #endif /* The file to store the daemon's process ID, for shutdown scripts etc */