Date: Sun, 19 Sep 2004 22:47:07 +1000 (EST) From: Neo-Vortex <root@Neo-Vortex.Ath.Cx> To: Terry <terry@mrtux.co.uk> Cc: freebsd-security@freebsd.org Subject: Re:sshd security Message-ID: <20040919224629.L75607@Neo-Vortex.Ath.Cx> In-Reply-To: <414D7D7E.9040301@mrtux.co.uk> References: <20040919120131.4B2F916A4D8@hub.freebsd.org> <414D7D7E.9040301@mrtux.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 19 Sep 2004, Terry wrote: > I had the same problem so i setup up hosts.allow to only allow access > from certain ips i require > This has the affect of killing the connection from any other ip befor > gettign to any login prompt > example below > sshd : localhost : allow > sshd : 192.168.2. : allow > sshd : 82.41.115.213 :allow > sshd : 216.123.248.219 : allow <-- public ip i wish to allow of course > i have changed it > sshd : all : deny > > This then shows in log instead of failed login attempts > > dot.blah.co.uk refused connections: > Sep 17 22:11:55 dlt sshd[35669]: refused connect from usen-219x113x213x21.ap-US.usen.ad.jp (219.113.213.21) you could always just use ipf/ipfw if the log messages are annoying you... > Regards Terry
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040919224629.L75607>