From owner-freebsd-security  Mon Jun 24  6:21:41 2002
Delivered-To: freebsd-security@freebsd.org
Received: from hawk.mail.pas.earthlink.net (hawk.mail.pas.earthlink.net [207.217.120.22])
	by hub.freebsd.org (Postfix) with ESMTP id C716137B401
	for <freebsd-security@freebsd.org>; Mon, 24 Jun 2002 06:21:38 -0700 (PDT)
Received: from user-2iniujr.dialup.mindspring.com ([165.121.122.123] helo=earthlink.net)
	by hawk.mail.pas.earthlink.net with esmtp (Exim 3.33 #2)
	id 17MTmO-0005Jv-00; Mon, 24 Jun 2002 06:21:36 -0700
Message-ID: <3D171C4E.3050507@earthlink.net>
Date: Mon, 24 Jun 2002 06:19:10 -0700
From: Lawrence Sica <lomifeh@earthlink.net>
User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-US; rv:1.0.0) Gecko/20020529
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Florin MANAILA <florin.manaila@softnet.ro>
Cc: freebsd-security@freebsd.org
Subject: Re: SSH ACL .
References: <3D171A40.3030400@softnet.ro>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Florin MANAILA wrote:
> Re all,
> 
> Is posible to make an ACK with ipfw or something else to deny all ssh 
> trafic even when is made on sshd that are running on port's gt 1022 ??   
> - something like sniffing the packets , and deny anything regarding SSH 
> connections.
> 
> 
Are you trying to stop users from sshing out or to not be able to ssh in 
past the firewall?  or both?

--Larry


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message