Date: Sun, 19 Sep 2004 11:50:32 +1000 From: Antony Mawer <fbsd-security@mawer.org> To: Chris Ryan <chrisryanemail@yahoo.com.au> Cc: freebsd-security@freebsd.org Subject: Re: Attacks on ssh port Message-ID: <414CE5E8.6000103@mawer.org> In-Reply-To: <20040918142955.61586.qmail@web51007.mail.yahoo.com> References: <20040918142955.61586.qmail@web51007.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Chris Ryan wrote: > protection - with the appropriate active firewall that > blocks their IP address after x failed attempts > permanently.... Has anyone found any good scripts or utilities for automating this kind of thing? I too have been subject to these probings, and my initial thought was to firewall off any address after any number of incorrect attempts. While I could write a script to parse the ipfilter logs, I didn't want to go re-inventing the wheel for something which I was sure someone would have already attempted. Anyone have any suggestions? Cheers Antony
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?414CE5E8.6000103>