From ae67a263f90a2defd9b0f2b9ecfcbfa157291428 Mon Sep 17 00:00:00 2001 From: Christopher Wellons Date: Sun, 3 Feb 2019 12:04:23 -0500 Subject: [PATCH] Tweak the README a bit --- README.md | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index dc5b299..8d10a4b 100644 --- a/README.md +++ b/README.md @@ -3,10 +3,10 @@ Endlessh is an SSH tarpit that *very* slowly sends an endless, random SSH banner. It keeps SSH clients locked up for hours or even days at at time. The purpose is to put your real SSH server on another port and -then let the script kiddies get themselves stuck in this tarpit instead -of bothering a real server. +then let the script kiddies get stuck in this tarpit instead of +bothering a real server. -Since the tarpit is the banner, before any cryptographic exchange +Since the tarpit is in the banner before any cryptographic exchange occurs, this program doesn't depend on any cryptographic libraries. It's a simple, single-threaded, standalone C program. It uses `poll()` to trap multiple clients at a time. @@ -26,8 +26,12 @@ Usage: endlessh [-vh] [-d MS] [-f CONFIG] [-l LEN] [-m LIMIT] [-p PORT] -v Print diagnostics to standard output (repeatable) ``` +Argument order matters. The configuration file is loaded when the `-f` +argument is processed, so only the options that follow will override the +configuration file. + By default no log messages are produced. The first `-v` enables basic -logging and a second `-v` enables debug logging (noisy). All log +logging and a second `-v` enables debugging logging (noisy). All log messages are sent to standard output. endlessh -v >endlessh.log 2>endlessh.err