I would like to puprose a new feature for sshguard : block only on the service attacked.
This could be very usefull for many cases.
I have made some test, and it is really easy to get it working.
I just add an optional mode in the conf file :
default mode : block all services
service mode : block service by service
I will be able to submit a PR for that if it could be a new feature for sshguard.