Date: Tue, 28 Feb 2006 16:39:09 +0100 From: Karol Kwiatkowski <freebsd@orchid.homeunix.org> To: freebsd-questions@freebsd.org Subject: Re: limiting brute force attacks Message-ID: <44046E9D.9090302@orchid.homeunix.org> In-Reply-To: <20060228152555.GE29050@tigger.digitaltorque.ca> References: <20060228152555.GE29050@tigger.digitaltorque.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Michael P. Soulier wrote: > Hey people, > > I've seen some efforts from the netfilter community on Linux to provide a > means to limit brute-force attacks via firewall rules. Can anyone suggest a > way to do the same on FreeBSD? > > I'm primarily interested in limiting attacks on sshd. I already use RSA auth, > but I like defense-in-depth. Hi Michael, you can use pf firewall (probably others, too) to limit/refuse incoming connections. Have a look at Niki Denev's post @stable: http://lists.freebsd.org/pipermail/freebsd-stable/2006-February/022616.html Regards, Karol -- Karol Kwiatkowski <freebsd at orchid dot homeunix dot org> GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.1 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFEBG6lezeoPAwGIYsRAsrKAJ4iCbYglvQx9hS0CFIYcf0iQZiDlgCZAbAm XXe0O7qO5R3gOKbA6UD+Bek= =CzyI -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44046E9D.9090302>