This is designed for exactly what you are trying to do.
On 12/1/05,
Matt Darcy <[EMAIL PROTECTED]> wrote:
Gerard Beekmans wrote:
> Hey guys,
>
> Just wondering who else has been getting these. I have a /24 IP space
> that seems to be targeted lately for sshd bruce force attacks. I can't
> seem to keep up with firewalling the bad guys out. Luckily there's no
> such thing as weak passwords on the servers I have access to, so all
> should be well. For now anyway. It's just annoying.
>
> Yeah I could block all access to port 22 and only allow a select few
> IP addresses access but this makes things cumbersome when I try to
> login to my machine when I'm out of town.
>
> The only maybe way around this is create a web app where I can input
> IP addresses that can SSH and some cronjob to check for changes and
> update the firewall accordingly.
>
> Does anybody have other ideas? I'd like to keep ssh open for
> convenience reasons. It'd really suck if I block the world, am out of
> town, get an emergency call for work, and "oops I can't login until
> I'm home again which will be in a few days. Sorry boss, you'll just
> have to live with the downed service until then." That's not going to
> go over very well.
>
>
>
my IP blocks take a regular kicking.
--
http://linuxfromscratch.org/mailman/listinfo/lfs-support
FAQ: http://www.linuxfromscratch.org/lfs/faq.html
Unsubscribe: See the above information page
--
Kevin Barnard
"Great Beauty, great strength, and great Riches,
are really and truly of no great Use;
a right Heart exceeds all." -- Benjamin Franklin
-- http://linuxfromscratch.org/mailman/listinfo/lfs-support FAQ: http://www.linuxfromscratch.org/lfs/faq.html Unsubscribe: See the above information page
