Sad Clouds <[email protected]> writes: > Hi, I'm trying to configure blocklistd but it seems I'm missing > something. If I simulate ssh login failure, it is not registered via > blocklistd and "blocklistctl dump -a" shows an empty list.
You say "simulate", but you should be doing ssh from some remote addresss and actually have login failures. Maybe that's what you meant. Make sure blocklistd is running, and then look in /var/log/messages. Also, you can have a group for the blocklistd ruleset, with nothing else, before the other groups. When I run 'blacklistctl dump -a' (n9) I get a few dozen lines.
