My denyhosts is running on OS X 10.4.11 and parsing /var/log/asl.log. It rarely bans anything and it's not because there are not plenty of penetration attempts. I just looked at asl.log and noted that there are no IP addresses being logged. Typical log entry:
[Time 2009.10.22 17:26:00 UTC] [Facility authpriv] [Sender com.apple.SecurityServer] [PID -1] [Message authinternal failed to authenticate user root.] [Level 3] [UID -2] [GID -2] [Host smtp] I've checked secure.log and system.log and neither of these seem to log offending IPs either. Anyone know how to get the offending IPs to be logged in asl.log? Is there a log format specification I can modify somewhere? ------------------------------------------------------------------------------ Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference _______________________________________________ Denyhosts-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/denyhosts-user
