Date: Tue, 13 Feb 2007 09:00:04 -0500 From: "Andy Greenwood" <greenwood.andy@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: Onpening and Closing ports Message-ID: <3ee9ca710702130600j61d84c87vb6930398ab9984d6@mail.gmail.com> In-Reply-To: <3814.192.168.16.2.1171354601.squirrel@lists.lc-words.com> References: <45CEC7A4.7030802@ephgroup.com> <87tzxqpko3.fsf@thingy.datadok.no> <3814.192.168.16.2.1171354601.squirrel@lists.lc-words.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2/13/07, Zbigniew Szalbot <zbyszek@szalbot.homedns.org> wrote: > Hello, > > Peter N. M. Hansteen wrote: > > You can head them off rather easily with a short PF rule set, see > > eg http://home.nuug.no/~peter/pf/en/bruteforce.html. > > > > They can actually be fun to watch :) > > It was funny for me because I set the max con rule to 10 and then logged > in 10 times to see if that would work. Of course that did (silly me!) and > as a result I blocked myself the access to the machine. I logged in from > another IP and commented out the pf.conf file entries for the bruteforce > but wonder how to empty the table (so that it does not contain my ip) and > enable the bruteforce defence again. man pfctl. Specifically the -T switch. > > Thank you very much! > > -- > Zbigniew Szalbot > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > -- -- I'm nerdy in the extreme and whiter than sour cream
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3ee9ca710702130600j61d84c87vb6930398ab9984d6>