On Monday 27 August 2007, Dragos CHIRIAC wrote: > lonely wolf wrote: > > Catalin Catana wrote: > >> Salut, > > > > iptables -A SSH_Brute_Force -j TARPIT > > Nu toata lumea are target tarpit in kernel :) . Desi e frumos, nu se > aplica la oricine. > > For the record , eu folosesc satisfacut : > > iptables -A INPUT -i _eth0_ -p tcp --dport 22 -m state --state NEW -m > recent --update --seconds 60 --hitcount 3 --rttl --name SSH -j DROP > (nesimtit) > > si de siguranta pam-abl ( > http://www.hexten.net/wiki/index.php/Pam_abl ). > > Merge, inca nu mi-am dat peste dejte singur. Deci e bine. > > Dragos > Salut,
Eu folosesc denyhosts ( http://denyhosts.sourceforge.net/ ) sau blocksshd ( http://sourceforge.net/projects/blocksshd/ ) , e posibil sa mai fie si altele. Succes ! -- In case something goes worong use : BOFH excuse #125: we just switched to Sprint PGP: http://new-order.org/public.key
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ RLUG mailing list [email protected] http://lists.lug.ro/mailman/listinfo/rlug
