Re: SSH login takes very long time...sometimes

Fri, 17 Feb 2006 11:56:32 -0800 

At 09:17 PM 16/02/2006, Atanas wrote:
Does anybody know whether ipfw (or something else within FreeBSD-4) is capable of setting connection rate limits? 


Why not just launch sshd out of inetd ?

Start up inetd with -wWl -C 5

In inetd.conf

ssh     stream  tcp     nowait  root  /usr/sbin/sshd 
/usr/sbin/sshd -i


This will allow 5 connections per min from a single IP.

on one of my web servers, I see for example


Feb  9 13:34:48 vinyl inetd[124]: ssh from 61.71.72.164 exceeded 
counts/min (limit 10/min)
Feb  9 15:36:22 vinyl inetd[124]: ssh from 61.235.76.190 exceeded 
counts/min (limit 10/min)
Feb 10 05:50:08 vinyl inetd[124]: ssh from 125.246.241.133 exceeded 
counts/min (limit 10/min)
Feb 10 11:11:30 vinyl inetd[124]: ssh from 221.143.43.243 exceeded 
counts/min (limit 10/min)
Feb 10 11:22:21 vinyl inetd[124]: ssh from 221.143.43.243 exceeded 
counts/min (limit 10/min)
Feb 10 14:49:13 vinyl inetd[124]: ssh from 218.246.34.133 exceeded 
counts/min (limit 10/min)
Feb 10 21:40:50 vinyl inetd[124]: ssh from 211.41.229.83 exceeded 
counts/min (limit 10/min)
Feb 11 16:24:36 vinyl inetd[124]: ssh from 211.71.97.26 exceeded 
counts/min (limit 10/min)
Feb 12 05:54:37 vinyl inetd[124]: ssh from 64.71.164.105 exceeded 
counts/min (limit 10/min)
Feb 12 05:54:57 vinyl inetd[124]: ssh from 212.205.97.25 exceeded 
counts/min (limit 10/min)
Feb 12 06:23:52 vinyl inetd[124]: ssh from 61.62.0.139 exceeded 
counts/min (limit 10/min)
Feb 12 11:54:43 vinyl inetd[124]: ssh from 202.64.253.156 exceeded 
counts/min (limit 10/min)
Feb 12 22:19:22 vinyl inetd[124]: ssh from 69.57.160.138 exceeded 
counts/min (limit 10/min)
Feb 13 07:23:41 vinyl inetd[124]: ssh from 61.155.9.172 exceeded 
counts/min (limit 10/min)
Feb 13 07:54:34 vinyl inetd[124]: ssh from 210.0.200.7 exceeded 
counts/min (limit 10/min)
Feb 13 10:12:59 vinyl inetd[124]: ssh from 63.79.13.145 exceeded 
counts/min (limit 10/min)
Feb 13 11:43:05 vinyl inetd[124]: ssh from 64.7.152.228 exceeded 
counts/min (limit 10/min)
Feb 13 14:36:17 vinyl inetd[124]: ssh from 210.117.187.175 exceeded 
counts/min (limit 10/min)
Feb 14 06:51:37 vinyl inetd[124]: ssh from 195.56.96.182 exceeded 
counts/min (limit 10/min)


Its good enough to get make those pesky scripts move along.


        ---Mike 


_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "[EMAIL PROTECTED]"






















					Reply via email to