d335e44d91
sshguard protects hosts from brute-force attacks against SSH and other services. Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com> [Peter: cleanup, start init script at S49, correct license, select iptables] Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
50 lines
826 B
Bash
50 lines
826 B
Bash
#!/bin/sh
|
|
|
|
DAEMON="sshguard"
|
|
PIDFILE="/var/run/$DAEMON.pid"
|
|
|
|
start() {
|
|
printf 'Starting %s: ' "$DAEMON"
|
|
iptables -L sshguard > /dev/null 2>&1 || \
|
|
(iptables -N sshguard && iptables -A INPUT -j sshguard)
|
|
start-stop-daemon -S -q -b -p /run/sshguard.pid \
|
|
-x /usr/sbin/sshguard -- -i /run/sshguard.pid
|
|
status=$?
|
|
if [ "$status" -eq 0 ]; then
|
|
echo "OK"
|
|
else
|
|
echo "FAIL"
|
|
fi
|
|
return "$status"
|
|
}
|
|
|
|
stop() {
|
|
printf 'Stopping %s: ' "$DAEMON"
|
|
start-stop-daemon -K -q -p "$PIDFILE"
|
|
status=$?
|
|
if [ "$status" -eq 0 ]; then
|
|
rm -f "$PIDFILE"
|
|
echo "OK"
|
|
else
|
|
echo "FAIL"
|
|
fi
|
|
return "$status"
|
|
}
|
|
|
|
restart() {
|
|
stop
|
|
sleep 1
|
|
start
|
|
}
|
|
|
|
case "$1" in
|
|
start|stop|restart)
|
|
"$1";;
|
|
reload)
|
|
# Restart, since there is no true "reload" feature.
|
|
restart;;
|
|
*)
|
|
echo "Usage: $0 {start|stop|restart|reload}"
|
|
exit 1
|
|
esac
|