From owner-freebsd-questions@FreeBSD.ORG  Tue Feb 28 15:31:25 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 48DD916A420
	for <freebsd-questions@freebsd.org>;
	Tue, 28 Feb 2006 15:31:25 +0000 (GMT) (envelope-from danger@rulez.sk)
Received: from virtual.micronet.sk (smtp.micronet.sk [84.16.32.237])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BBA4E43D67
	for <freebsd-questions@freebsd.org>;
	Tue, 28 Feb 2006 15:31:17 +0000 (GMT) (envelope-from danger@rulez.sk)
Received: from localhost (localhost [127.0.0.1])
	by virtual.micronet.sk (Postfix) with ESMTP id BCA8D10E606;
	Tue, 28 Feb 2006 16:31:02 +0100 (CET)
Received: from virtual.micronet.sk ([127.0.0.1])
	by localhost (virtual.micronet.sk [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 61917-15; Tue, 28 Feb 2006 16:31:02 +0100 (CET)
Received: from danger.mcrn.sk (danger.mcrn.sk [84.16.37.254])
	by virtual.micronet.sk (Postfix) with ESMTP id 0D44610E5D5;
	Tue, 28 Feb 2006 16:31:02 +0100 (CET)
Date: Tue, 28 Feb 2006 16:31:08 +0100
From: Daniel Gerzo <danger@rulez.sk>
X-Mailer: The Bat! (v3.62.14) Professional
X-Priority: 3 (Normal)
Message-ID: <276435252.20060228163108@rulez.sk>
To: "Michael P. Soulier" <msoulier@digitaltorque.ca>
In-Reply-To: <20060228152555.GE29050@tigger.digitaltorque.ca>
References: <20060228152555.GE29050@tigger.digitaltorque.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavisd-new at virtual.micronet.sk
Cc: freebsd-questions@freebsd.org
Subject: Re: limiting brute force attacks
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Daniel Gerzo <danger@rulez.sk>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Feb 2006 15:31:25 -0000

Hello Michael,

Tuesday, February 28, 2006, 4:25:55 PM, you contributed this to our collective wisdom:

> Hey people,

> I've seen some efforts from the netfilter community on Linux to provide a
> means to limit brute-force attacks via firewall rules. Can anyone suggest a
> way to do the same on FreeBSD? 

> I'm primarily interested in limiting attacks on sshd. I already use RSA auth,
> but I like defense-in-depth.

maybe you would be interested in ports/security/bruteforceblocker ?

> Thanks,
> Mike

-- 
Sincerely,
  Daniel Gerzo