Date: Wed, 3 Jan 2007 13:49:07 +0200 From: Peter Nyamukusa <petern@africaonline.co.zw> To: freebsd-questions@freebsd.org Cc: Len Conrad <LConrad@go2france.com> Subject: Re: sshd break-in attempt Message-ID: <200701031349.08991.petern@africaonline.co.zw> In-Reply-To: <459A6D77.5010003@mikestammer.com> References: <459A5A45.4080309@wmptl.com> <200701021505921.SM00292@TX2.Go2France.com> <459A6D77.5010003@mikestammer.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tuesday 02 January 2007 16:34, Eric wrote: Hi, Why don't you use the /etc/rc.firewall, its a good firewall too. > Len Conrad wrote: > >> In our 'periodic daily' report/email, (only the list goes on for > >> hundreds of attempts). Anyhow, long story short; is there not an easy > >> way to make sshd block or deny hosts temporarily if X number of > >> invalid login attempts are made within a minute's time? > > > > to reduce the brute force attacks + voluminous logging, tell sshd to > > listen on port other than 22. > > > > google for "tcp wrappers sshd" for examples of how to use tcp wrappers > > in reactive blocking > > > > Len > > check out the denyhosts port as well. works great > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" =2D-=20 Peter Nyamukusa Systems Administrator Africa Online Zimbabwe Tel: =A0 =A0+263-4-250890 =46ax: =A0 =A0+263-4-702203 E-mail: petern@africaonlineco.zw AIM: =A0 petenya Africa Online Disclaimer and Confidentiality Note=20 This e-mail, its attachments and any rights attaching hereto are,=20 unless the context clearly indicates otherwise, the property of=20 Africa Online Holdings (Mauritius) Limited and/or its subsidiaries=20 ("the Group"). It is confidential and intended for the addressee=20 only. Should you not be the addressee and have received this e-mail=20 by mistake, kindly notify the sender, delete this e-mail=20 immediately and do not disclose or use the same in any manner=20 whatsoever. Views and opinions expressed in this e-mail are those=20 of the sender unless clearly stated as those of the Group. The=20 Group accepts no liability whatsoever for any loss or damages,=20 however incurred, resulting from the use of this e-mail or its=20 attachments. The Group does not warrant the integrity of this=20 e-mail, nor that it is free of errors, viruses, interception or=20 interference. For more information about Africa Online, please=20 visit our website at http://www.africaonline.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200701031349.08991.petern>