From owner-freebsd-questions@FreeBSD.ORG Mon May 3 17:02:44 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id B6B31106566B for ; Mon, 3 May 2010 17:02:44 +0000 (UTC) (envelope-from repcsike@gmail.com) Received: from mail-ew0-f226.google.com (mail-ew0-f226.google.com [209.85.219.226]) by mx1.freebsd.org (Postfix) with ESMTP id 455C98FC13 for ; Mon, 3 May 2010 17:02:43 +0000 (UTC) Received: by ewy26 with SMTP id 26so673299ewy.3 for ; Mon, 03 May 2010 10:02:38 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type; bh=BEmDVTtMpEWAnq/6b9qanNfVh7pZDqNQ6hISAhhzWJw=; b=bvdjTA8WklPlwFLRhCd1D6uEhTuo6EuAj8NZVlQIrtG61hHve5kz5/f9rV3FpPM+7p KjONWvZZdk7F12IyjrTlt9aVlYyVy/LGSof2gI7UZBPm3Ck+xAHfSa44FsvmEE5OsmZV U8IY016I1i4zTJZv2g7/x3+AwXfZJsnyU9oRc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=Xj2FWj5TxXRqo+9oT17ansB1UxCOhlSWarXqKzdFWqjzMmpUrAUbeQMyri3GqWVh1Z IDsHVR1n8Dr3x49KcHIu8RVsSfTNHRWd2eKRfnnYDm7gnMCH4Ryyx6ZBCHAf9nbFGPpI ojO1G9F19Gw6Yt9QoNEX54aR9wAbK7iHmSMtA= MIME-Version: 1.0 Received: by 10.213.74.74 with SMTP id t10mr6084031ebj.12.1272906157421; Mon, 03 May 2010 10:02:37 -0700 (PDT) Received: by 10.213.36.11 with HTTP; Mon, 3 May 2010 10:02:37 -0700 (PDT) In-Reply-To: References: <20100503144110.GA14402@elwood.starfire.mn.org> <4BDEF9E4.9020806@infracaninophile.co.uk> <20100503163933.GA15599@elwood.starfire.mn.org> Date: Mon, 3 May 2010 19:02:37 +0200 Message-ID: From: =?ISO-8859-1?B?QmFs4XpzIE3hdOlmZnk=?= To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: pf suggestions for paced attack X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 03 May 2010 17:02:44 -0000 Hi, I'm interested, by the way, is there a max size limit to a pf table? Mine always stops working at 2megs... On 3 May 2010 18:48, Adam Vande More wrote: > On Mon, May 3, 2010 at 11:39 AM, John wrote: > > > Hi, Matthew. Indeed, yes, you may not recall, but my rules are > > based on a set that I originally got from you, and I do, in fact, > > have a white list, which I should have mentioned, but some of my > > users are "road warriors" and could be coming from virtually anywhere. > > You're right, though - it's time to look into alternatives to > > password-based authenticaion. I think I've taken password-based > > protection and rate adaptive rules to their logical limit. > > > > > What's wrong with denyhosts? Key-based authentication has it's own set > pitfalls. I'm far more likely to lose my usb stick than my password. I > imagine there are other like me. > > -- > Adam Vande More > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" >