sshsentry v4.1.0 - 14.01.2012 - Andreas Stempfhuber <andi@afulinux.de>
 - Added support for ipset, see README.ipset and README.shorewall for details.
 - Added DAEMON_ARGS option for the init script which can be used at
   /etc/default/sshsentry to e.g. start sshsentry in debug mode.
 - Lowered the memory usage for parsing the hosts.deny file.

sshsentry v4.0.1 - 10.01.2012 - Andreas Stempfhuber <andi@afulinux.de>
 - Slightly changed the SENTRY format of the hosts.deny file, it shows now
   the date as 2012-01-31 11.30.15 for temporary and also for permanently
   blocked hosts.
 - Inotify listen to IN_MODIFY of the logfile and IN_CREATE of the logfile
   directory, as listening to IN_ATTRIB is not working in all scenarios.
 - Make sure that each host is only blocked once, even if the attacks are
   coming very fast.
 - $remote_fs added to Required-Start and Required-Stop of the initscript.
 - Initialise FQDN manually if DNS does not resolve.

sshsentry v4.0.0 - 18.07.2011 - Andreas Stempfhuber <andi@afulinux.de>
 - Rewritten about 80% of the code with the following features:
   * Using of the Linux inotify interface instead of polling the syslog file.
   * Using Perl's alarm timer instead of polling the host.deny file.
   * Automatically detecting bad users based on amount of attacks.
   * Block hosts permanently based on amount of attacks.
   * Storage file to store hosts and users data.
   * Garbage collection to remove old hosts and users data.
   * Detecting portscans and wrong SSH protocol versions.
   * Ability to whitelist hosts and networks.
   * Send emails on accepted SSH logins when user is not listed on a whitelist.
   * Sendmail compatible email implementation.
   * Added debug mode.
 - Renamed to sshsentry.
 - GPL v3 changeover.
 - LSB compliant initscript added.

loginsentry v3.0.5 - 17.10.2009 - Andreas Stempfhuber <andi@afulinux.de>
 - cleanup, unnecessary stuff removed.
 - support for postfix, pwauth and dovecot removed.
 - switched from Mail::Mailer to Mail::Sendmail for better error handling.
 - sending of notification emails is now optional.

loginsentry v3.0.4 - 16.11.2007 - Andreas Stempfhuber <andi@afulinux.de>
 - improved log analysis.
 - implemented missing identification string detection.
 - added the name loginsentry to the subject of emails.
 - meta characters in usernames ignored for badlist comparison.

loginsentry v3.0.3 - 19.07.2007 - Andreas Stempfhuber <andi@afulinux.de>
 - bugfix for newer SSH versions and "invalid user" detection.
 - $excluded_hosts_regexp is now optional.
 - ssh log detection for PAM messages added.
 - different treatment of valid and invalid users removed.
 - minor cleanup and improvements.

loginsentry v3.0.2 - 17.07.2006 - Andreas Stempfhuber <andi@afulinux.de>
 - loginsentry-getbadusers added.

loginsentry v3.0.1 - 07.07.2006 - Andreas Stempfhuber <andi@afulinux.de>
 - Makefile and some documentation files added.
 - packed everything together into a tar.gz file.
 - normalize_duration removed, the duration is now always in minutes.

loginsentry v3.0.0 - 02.02.2006 - Andreas Stempfhuber <andi@afulinux.de>
 - Added better email support (SMTP protocol violation "input sent without
   waiting for greeting" fixed).
 - Do not read whole logfile on start-up, seek to the end first.
 - Use Sys::Hostname instead of /bin/hostname.
 - Use Sys::Syslog instead of /usr/bin/logger.
 - Call expire_denials() only about once per minute.
 - $penalty_default implemented.
 - Source external configuration file /etc/login_sentry.pl
 - -D and --(no)daemon added, useful for start-up scripts.
 - Code cleanup and improvements.

login_sentry v2.0.0 - 22.10.2004 - Jesse Shrieve <j@lumiere.net>
 - Origin: http://www.lumiere.net/~j/login_sentry/
 - Misc fixes so it actually works, especially email notices.
 - Corrected SMTP helo strings.
 - Taint mode on, taint fixes.
 - Ripped out blacklist sharing (no longer listens on any network ports).
 - Optional hook for another app.
 - Redaemonize.
 - Writes pid to /var/run/$name.pid
 - Added support for a few more types of log lines.
 - Enable/disable postfix log line, matching with $watch_postfix = 0
 - Same for pwauth, dovecot.
 - Must use PAM for dovecot, SASL for postfix.
 - Code is very basic. For instance, there's no checking of SMTP server
   response, timing, etc.

sshd_sentry - 05.10.2004 - Victor Danilchenko <danilche@cs.umass.edu>
 - Origin: http://linuxmafia.com/pub/linux/security/sshd_sentry/
 - Added client/server functionality, via a separate listening child to
   communicate with the server.

sshd_sentry - 22.09.2004 - Victor Danilchenko <danilche@cs.umass.edu>
 - Added notification by mail capability, via direct SMTP injection.
