Puffy Denies [Them]

PuDe - Configuration

There are some customization options that might require adjustment. PuDe require also some slight changes in pf configuration and as well as in /etc/rc.local.
Everything is described below. If you require additional help please contact with author.

Inside pude ksh script there are several variables. You can change values of that variables to adopt PuDe to your needs. These variables are as follows:

• Thresholds for failed log in attempts:
  • NUM_ROOT
    This is the number of acceptable failed attempts to log in as root. Default value: 0
  • NUM_INVALID
    This is the number of acceptable failed attempts to log in using invalid user name. Default value: 2
  • NUM_FAILED
    This is the number of acceptable failed attempts to log in using wrong password. Default value: 3
• Location of authlog file
  ALF
  This is location of authlog file. Default value: /var/log/authlog
• Mail address of an administrator and message body which is sent if log in attempt succeed:
  • EMAIL
    This is e-mail address. Default value: me@example.org
  • MAIL
    This is message body. Default value: ssh accepted password on The Machine

Additionally you can fill /var/log/pude.fair file with trusted hosts' IPs if you wish. Those IPs will be never blocked.

Configuration of pf:

1. Open in your favorite editor pf configuration file: /etc/pf.conf
2. Check what is the name of your network interface.
3. At the end of the file add following lines:
   # pude
table <pude> persist
block in on YOUR_INTERFACE from <pude> to any

4. Change YOUR_INTERFACE to the name of your network interface.
5. Read the modified rules using pfctl -f /etc/pf.conf

Configuration of /etc/rc.local:

1. Open in your favorite editor /etc/rc.local file.
2. Below the line # Add your local startup actions here. add the following lines:
   # pude
echo -n ' pude'; /usr/local/bin/pude > /dev/null &

3. Restart your machine.

PuDe is working now. Have fun!

Further customization can be done using ctl interface.