From nobody@FreeBSD.org  Sun Jul  1 18:34:02 2007
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id BE4BB16A46C
	for <freebsd-gnats-submit@FreeBSD.org>; Sun,  1 Jul 2007 18:34:02 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [69.147.83.33])
	by mx1.freebsd.org (Postfix) with ESMTP id AE8B513C46A
	for <freebsd-gnats-submit@FreeBSD.org>; Sun,  1 Jul 2007 18:34:02 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.13.1/8.13.1) with ESMTP id l61IY2fF004499
	for <freebsd-gnats-submit@FreeBSD.org>; Sun, 1 Jul 2007 18:34:02 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.13.1/8.13.1/Submit) id l61IY2RT004480;
	Sun, 1 Jul 2007 18:34:02 GMT
	(envelope-from nobody)
Message-Id: <200707011834.l61IY2RT004480@www.freebsd.org>
Date: Sun, 1 Jul 2007 18:34:02 GMT
From: Alex Keda <admin@lissyara.su>
To: freebsd-gnats-submit@FreeBSD.org
Subject: incorrect detect error password
X-Send-Pr-Version: www-3.0

>Number:         114194
>Category:       ports
>Synopsis:       security/sshit: incorrect detect error password
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    rafan
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Sun Jul 01 18:40:13 GMT 2007
>Closed-Date:    Mon Jul 02 08:36:24 GMT 2007
>Last-Modified:  Mon Jul  2 08:40:01 GMT 2007
>Originator:     Alex Keda
>Release:        6.2
>Organization:
ussr
>Environment:
FreeBSD lissyara.int.otradno.ru 6.2-RELEASE-p5 FreeBSD 6.2-RELEASE-p5 #0: Mon Jun 25 21:34:44 MSD 2007     lissyara@lissyara.int.otradno.ru:/usr/obj/shares/src6.2/src/sys/lissyara.int.otradno.ru.ipsec.2007-03-15  i386
>Description:
Incorrect detect bad password.
example:
Jul  1 22:25:53 lissyara sshd[32925]: error: PAM: authentication error for lissyara from 192.168.254.193
Jul  1 22:25:54 lissyara sshd[32925]: error: PAM: authentication error for lissyara from 192.168.254.193
but, expression in script not contain "error", - and not match on this situation
>How-To-Repeat:
always
>Fix:
patch (not attached - incorrect type?) http://lissyara.su/patch/patch-for-sshit.diff

diff -Nru sshit.orig/Makefile sshit/Makefile
--- sshit.orig/Makefile	Mon May  7 22:43:22 2007
+++ sshit/Makefile	Sun Jul  1 22:21:19 2007
@@ -7,6 +7,7 @@
 
 PORTNAME=	sshit
 PORTVERSION=	0.6
+PORTREVISION=	1
 CATEGORIES=	security
 MASTER_SITES=	http://anp.ath.cx/sshit/ \
 		${MASTER_SITE_LOCAL}
diff -Nru sshit.orig/files/patch-sshit.diff sshit/files/patch-sshit.diff
--- sshit.orig/files/patch-sshit.diff	Thu Jan  1 03:00:00 1970
+++ sshit/files/patch-sshit.diff	Sun Jul  1 22:16:03 2007
@@ -0,0 +1,11 @@
+--- sshit.orig	Sun Jul  1 22:13:45 2007
++++ sshit	Sun Jul  1 22:14:46 2007
+@@ -317,7 +317,7 @@
+ 
+ while (<>) {
+ 	chomp;
+-	if (/(failed|Invalid user) .*from (\d+\.\d+\.\d+\.\d+|[\da-fA-F:]+)/i ) { # IPv4 & IPv6
++	if (/(failed|error|Invalid user) .*from (\d+\.\d+\.\d+\.\d+|[\da-fA-F:]+)/i ) { # IPv4 & IPv6
+ 		$ip = $2;
+ 		if ($list{$ip}{name}) {
+ 			if ($list{$ip}{n} >= $MAX_COUNT) {


>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->freebsd-ports-bugs 
Responsible-Changed-By: remko 
Responsible-Changed-When: Sun Jul 1 20:34:14 UTC 2007 
Responsible-Changed-Why:  
POrts PR 

http://www.freebsd.org/cgi/query-pr.cgi?pr=114194 
State-Changed-From-To: open->feedback 
State-Changed-By: rafan 
State-Changed-When: Mon Jul 2 03:41:31 UTC 2007 
State-Changed-Why:  
Await maintainer's feedback. 


Responsible-Changed-From-To: freebsd-ports-bugs->rafan 
Responsible-Changed-By: rafan 
Responsible-Changed-When: Mon Jul 2 03:41:31 UTC 2007 
Responsible-Changed-Why:  
take. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=114194 
State-Changed-From-To: feedback->closed 
State-Changed-By: rafan 
State-Changed-When: Mon Jul 2 08:36:22 UTC 2007 
State-Changed-Why:  
Committed. Thanks! 

http://www.freebsd.org/cgi/query-pr.cgi?pr=114194 

From: dfilter@FreeBSD.ORG (dfilter service)
To: bug-followup@FreeBSD.org
Cc:  
Subject: Re: ports/114194: commit references a PR
Date: Mon,  2 Jul 2007 08:36:19 +0000 (UTC)

 rafan       2007-07-02 08:36:13 UTC
 
   FreeBSD ports repository
 
   Modified files:
     security/sshit       Makefile 
   Added files:
     security/sshit/files patch-sshit.diff 
   Log:
   - Make sshit catch this type of error login:
   
   PAM: authentication error for lissyara from 192.168.254.193
   
   PR:             ports/114194
   Submitted by:   Alex Keda <admin at lissyara.su>
   Approved by:    maintainer via irc
   
   Revision  Changes    Path
   1.4       +1 -0      ports/security/sshit/Makefile
   1.1       +11 -0     ports/security/sshit/files/patch-sshit.diff (new)
 _______________________________________________
 cvs-all@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/cvs-all
 To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
 
>Unformatted:
