From owner-freebsd-security@FreeBSD.ORG Mon May 10 09:05:38 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8B71416A4CF for ; Mon, 10 May 2004 09:05:38 -0700 (PDT) Received: from smtp3.sentex.ca (smtp3.sentex.ca [64.7.153.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id 11DFC43D48 for ; Mon, 10 May 2004 09:05:38 -0700 (PDT) (envelope-from mike@sentex.net) Received: from avscan2.sentex.ca (avscan2.sentex.ca [199.212.134.19]) by smtp3.sentex.ca (8.12.11/8.12.10) with ESMTP id i4AG5YMY035381; Mon, 10 May 2004 12:05:34 -0400 (EDT) (envelope-from mike@sentex.net) Received: from localhost (localhost [127.0.0.1]) by avscan2.sentex.ca (Postfix) with ESMTP id 85C2F59C96; Mon, 10 May 2004 12:05:37 -0400 (EDT) Received: from avscan2.sentex.ca ([127.0.0.1]) by localhost (avscan2.sentex.ca [127.0.0.1]) (amavisd-new, port 10024) with SMTP id 80370-02; Mon, 10 May 2004 12:05:37 -0400 (EDT) Received: from lava.sentex.ca (pyroxene.sentex.ca [199.212.134.18]) by avscan2.sentex.ca (Postfix) with ESMTP id 6DC8259C93; Mon, 10 May 2004 12:05:37 -0400 (EDT) Received: from simian.sentex.net (simeon.sentex.ca [192.168.43.27]) by lava.sentex.ca (8.12.11/8.12.11) with ESMTP id i4AG5aCS038330; Mon, 10 May 2004 12:05:36 -0400 (EDT) (envelope-from mike@sentex.net) Message-Id: <6.0.3.0.0.20040510120626.035ccb20@64.7.153.2> X-Sender: mdtpop@64.7.153.2 (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 6.0.3.0 Date: Mon, 10 May 2004 12:07:51 -0400 To: Fernando Schapachnik From: Mike Tancsa In-Reply-To: <20040510160159.GY306@bal740r0.mecon.gov.ar> References: <6.0.3.0.0.20040510115614.04be3708@64.7.153.2> <20040510160159.GY306@bal740r0.mecon.gov.ar> Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1"; format=flowed Content-Transfer-Encoding: quoted-printable X-Virus-Scanned: by amavisd-new X-Virus-Scanned: by amavisd-new at (avscan2) sentex.ca cc: freebsd-security@freebsd.org Subject: Re: rate limiting sshd connections ? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 May 2004 16:05:38 -0000 At 12:01 PM 10/05/2004, Fernando Schapachnik wrote: >Have you checked MaxStartups at the sshd_config man page? Thanks, I am not sure how I missed that :( I only looked through the=20 daemon's docs and was searching on the key words rate limit via google. ---Mike >En un mensaje anterior, Mike Tancsa escribi=F3: > > > > Does anyone know of a way to rate limit ssh connections from an IP= address > > ? We are starting to see more and more brute force attempts to guess > > simple passwords "/usr/sbin/inetd -wWl -C 10" is nice for slowing down > > attempts to services launched via inetd. Is there an equiv method for > > doing this to sshd? Running from inetd has some issues supposedly.