# sshdfilter config, V1.3
# Config parser is simple, so don't try anything fancy.

# Min time (seconds) the block list is checked to remove stale entries from 
# this list and iptables. Put another way, limits how often sshdfilter 
# checks the IP block list for blocks that have exceeded the maxblocktime 
# value. So the default of 2 hours, says, at intervals at least 2 hours 
# appart, check all the IPs on the block lists and see if any have timed 
# out. Simply put, it should be a fraction of maxblocktime, say 0.05
repurgetime=7200

# How long (seconds) after the last activity from an ip that it can be 
# removed from iptables block list.
maxblocktime=3600*24*3

# How many password guesses of an existing user before going on the 
# blocked list. Here twice what it should be, with -e -D, sshd likes to 
# output failures and successes twice.
maxchances=6

# which interface to block
interface=""
#interface="-i eth1"

# where sshd lives
sshdpath="/usr/sbin/sshd"

# debug? !0 turns on debugging
debug=0

