From owner-freebsd-questions@FreeBSD.ORG  Wed Jan 13 10:06:20 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 7C5AF1065670
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Jan 2010 10:06:20 +0000 (UTC)
	(envelope-from mexas@bristol.ac.uk)
Received: from dirj.bris.ac.uk (dirj.bris.ac.uk [137.222.10.78])
	by mx1.freebsd.org (Postfix) with ESMTP id 3932D8FC13
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Jan 2010 10:06:20 +0000 (UTC)
Received: from isis.bris.ac.uk ([137.222.10.63])
	by dirj.bris.ac.uk with esmtp (Exim 4.69)
	(envelope-from <mexas@bristol.ac.uk>)
	id 1NV075-0000zu-Qy; Wed, 13 Jan 2010 10:06:18 +0000
Received: from mech-cluster241.men.bris.ac.uk ([137.222.187.241])
	by isis.bris.ac.uk with esmtp (Exim 4.67)
	(envelope-from <mexas@bristol.ac.uk>)
	id 1NV070-00057F-4a; Wed, 13 Jan 2010 10:06:07 +0000
Received: from mech-cluster241.men.bris.ac.uk (localhost [127.0.0.1])
	by mech-cluster241.men.bris.ac.uk (8.14.3/8.14.3) with ESMTP id
	o0DA61b6046901; Wed, 13 Jan 2010 10:06:01 GMT
	(envelope-from mexas@bristol.ac.uk)
Received: (from mexas@localhost)
	by mech-cluster241.men.bris.ac.uk (8.14.3/8.14.3/Submit) id
	o0DA61uF046900; Wed, 13 Jan 2010 10:06:01 GMT
	(envelope-from mexas@bristol.ac.uk)
X-Authentication-Warning: mech-cluster241.men.bris.ac.uk: mexas set sender to
	mexas@bristol.ac.uk using -f
Date: Wed, 13 Jan 2010 10:06:01 +0000
From: Anton Shterenlikht <mexas@bristol.ac.uk>
To: Erik Norgaard <norgaard@locolomo.org>
Message-ID: <20100113100601.GD23278@mech-cluster241.men.bris.ac.uk>
References: <20100111140105.GI61025@mech-cluster241.men.bris.ac.uk>
	<4B4C43EE.6080703@locolomo.org>
	<20100112095357.GD61863@mech-cluster241.men.bris.ac.uk>
	<4B4CF95B.90207@locolomo.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <4B4CF95B.90207@locolomo.org>
User-Agent: Mutt/1.5.20 (2009-06-14)
X-Spam-Score: -1.5
X-Spam-Level: -
Cc: Anton Shterenlikht <mexas@bristol.ac.uk>, freebsd-questions@freebsd.org
Subject: Re: denying spam hosts ssh access - good idea?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jan 2010 10:06:20 -0000

On Tue, Jan 12, 2010 at 11:36:11PM +0100, Erik Norgaard wrote:
> Anton Shterenlikht wrote:
> 
> >> - why not let your firewall do the blocking? If your blocking is IP 
> >> based that's the place to block.
> > 
> > I'm already under the University firewall. Only port 22 is let through.
> > But even that filles my logs.
> 
> What I meant was that if you want to block IPs or ranges of IPs then a 
> firewall is the place to block, it's efficient and simple.
> 
> If your university firewall doesn't satisfy you there is nothing that 
> hinders you from configuring firewall rules on your server.

thank you, I get it now.

anton

-- 
Anton Shterenlikht
Room 2.6, Queen's Building
Mech Eng Dept
Bristol University
University Walk, Bristol BS8 1TR, UK
Tel: +44 (0)117 331 5944
Fax: +44 (0)117 929 4423