Date: Mon, 15 May 2006 16:28:03 +0400 From: GreenX FreeBSD <freebsd@azimut-tour.ru> To: Kian Mohageri <kian.mohageri@gmail.com>, freebsd-pf@freebsd.org Subject: Re: promt solution with max-src-conn-rate Message-ID: <446873D3.7090703@azimut-tour.ru> In-Reply-To: <fee88ee40605142226i6b1e07c4h9625117e5d5e3bbe@mail.gmail.com> References: <44680266.2090007@azimut-tour.ru> <fee88ee40605142226i6b1e07c4h9625117e5d5e3bbe@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Kian Mohageri пишет: > you're probably trying to use this on a port where nothing is listening. Yes, I understand it, and I about it have written in my letter. I think above that how to make so that worked on not listening port. It is possible certainly, simply to redirect on any something responding service. But for this purpose foreign service is besides necessary. > I'd advise against what you're trying to do. It won't make your box > more secure. Why? Simply so, on ssh you will not come any more. If I am not mistaken, probability of that the scanner will begin the check with "key" port, and further at once will check up sshd is equal - 1 / (0xFFFF*0xFFFE). If he will not make itthis, he can be caught on max-src-conn-rate concerning public services, and to put for his forward from all ports on ssh localhost. Best regards, GreenX.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?446873D3.7090703>