"sshd.pam" executable name breaks sshguard and fail2ban filters (openssh-server-pam v3.15 package)
both sshguard and fail2ban in their standard configuration search the /var/log/messages file for a "sshd" program name; "sshd.pam" messages are ignored by both the programs, thus inhibiting the trigger for the ban.
As a workaround, I created a
/usr/sbin/pam/
directory, and a
/usr/sbin/pam/sshd -> ../sshd.pam
soft link, and I updated the
/etc/init.d/sshd
accordingly.
In this way at least sshguard started working (I've not tried fail2ban).
I don't know if better solutions are available.