From owner-freebsd-questions@FreeBSD.ORG Fri Oct 9 21:49:25 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D7D43106568D for ; Fri, 9 Oct 2009 21:49:25 +0000 (UTC) (envelope-from jonc@chen.org.nz) Received: from chen.org.nz (ip-58-28-152-174.static-xdsl.xnet.co.nz [58.28.152.174]) by mx1.freebsd.org (Postfix) with ESMTP id 8E0E88FC08 for ; Fri, 9 Oct 2009 21:49:25 +0000 (UTC) Received: by chen.org.nz (Postfix, from userid 1000) id 6D45428412; Sat, 10 Oct 2009 10:49:24 +1300 (NZDT) Date: Sat, 10 Oct 2009 10:49:24 +1300 From: Jonathan Chen To: Aflatoon Aflatooni Message-ID: <20091009214924.GB58052@osiris.chen.org.nz> References: <526808.11391.qm@web56207.mail.re3.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <526808.11391.qm@web56207.mail.re3.yahoo.com> User-Agent: Mutt/1.4.2.3i Cc: freebsd-questions@freebsd.org Subject: Re: Security blocking question X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Oct 2009 21:49:25 -0000 On Fri, Oct 09, 2009 at 02:45:51PM -0700, Aflatoon Aflatooni wrote: [...] > Is there a way that I could configure the server so that if there are for example X attempts from an IP address then for the next Y hours all the SSH requests would be ignored from that IP address? > There are only a handful of people who have access to that server. If there are only a handful, then I'd suggest that you put a whitelist of IP addresses in your firewall config. -- Jonathan Chen ---------------------------------------------------------------------- "A little learning is a dangerous thing but a lot of ignorance is just as bad." - Bob Edwards