More SSH 'trolling'
dave
drinker at dsrtech.com
Fri Oct 15 10:36:59 UTC 2004
Vladimir,
Good question. I just tested this and the connection does stay connected
to the host until it times out.
So although it will block repeated attempts from a single host, a DDOS
would be possible from hundreds of unique hosts.
The question would be how many open connections can a linux server
handle before it will accept no more connections to the SSH service.
Thanks,
Dave
On Fri, 2004-10-15 at 02:09, Vladimir G. Ivanovic wrote:
> >>>>> "d" == dave <drinker at dsrtech.com> writes:
>
> d> Blocking repeat SSH attacks with IPTables
> d>
> d> http://www.dsrtech.com/sshblock/
>
> At what point (i.e. with how many blocked IP addresses) does networking
> begin to slow down? Or is this not really a problem because the checks
> are only done at connection setup time?
>
> --- Vladimir
>
> --
> Vladimir G. Ivanovic http://leonora.org/~vladimir
> Palo Alto, CA 94306 +1 650 678 8014
More information about the fedora-list
mailing list