Date: Tue, 28 Feb 2006 16:39:09 +0100 From: Karol Kwiatkowski <freebsd@orchid.homeunix.org> To: freebsd-questions@freebsd.org Subject: Re: limiting brute force attacks Message-ID: <44046E9D.9090302@orchid.homeunix.org> In-Reply-To: <20060228152555.GE29050@tigger.digitaltorque.ca> References: <20060228152555.GE29050@tigger.digitaltorque.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig3A03BD7F969E2B7E62C3568C Content-Type: text/plain; charset=ISO-8859-2 Content-Transfer-Encoding: quoted-printable Michael P. Soulier wrote: > Hey people, >=20 > I've seen some efforts from the netfilter community on Linux to provide= a > means to limit brute-force attacks via firewall rules. Can anyone sugge= st a > way to do the same on FreeBSD?=20 >=20 > I'm primarily interested in limiting attacks on sshd. I already use RSA= auth, > but I like defense-in-depth.=20 Hi Michael, you can use pf firewall (probably others, too) to limit/refuse incoming connections. Have a look at Niki Denev's post @stable: http://lists.freebsd.org/pipermail/freebsd-stable/2006-February/022616.ht= ml Regards, Karol --=20 Karol Kwiatkowski <freebsd at orchid dot homeunix dot org> GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc --------------enig3A03BD7F969E2B7E62C3568C Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.1 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFEBG6lezeoPAwGIYsRAsrKAJ4iCbYglvQx9hS0CFIYcf0iQZiDlgCZAbAm XXe0O7qO5R3gOKbA6UD+Bek= =CzyI -----END PGP SIGNATURE----- --------------enig3A03BD7F969E2B7E62C3568C--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44046E9D.9090302>