On Wed, 2006-04-12 at 11:57 -0700, Gary Thornock wrote: > I like the automatic blocking idea behind DenyHosts, particularly > given its sync functionality and its automatic cleanup of old > blocks. I wish it were trivial to set it up to update my pf > rules instead of just hosts.deny for ssh. I also like the > rate-limiting idea that someone mentioned. I'm going to have to > find out how to do that in pf...
Check out the one I wrote then, SSH Lockout. It will call any shell
command to do the blocking. It comes with examples for iptables and
iproute2, but could do just about anything. Remember to submit patches.
http://www.zmonkey.org/~tensai/ssh-lockout/
Corey
signature.asc
Description: This is a digitally signed message part
/* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
