Off topic: Hacker
Jonathan Pickard
Jonathan.Pickard at intelligroup.co.nz
Tue Aug 16 04:50:57 UTC 2005
[snip]
> No advantage, if you can use your whitelist by all means do so. I can't
> easily whitelist (users traveling, connecting where they can), so
> instead I use iptables and denyhosts to dynamically blacklist. If you
> have to leave ssh open and on the standard port the dynamic blacklisting
> is very effective.
yip - use denyhosts from extras. i set the password attempts to 3 and the ssh attacks just get handled.
The information contained in this Internet Email message is intended for the addressee only and may contain privileged information, but not necessarily the official views or opinions of Intelligroup New Zealand Limited. If you are not the intended recipient you must not use, disclose, copy or distribute this message or the information in it. If you have received this message in error, please email or telephone the sender immediately.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: winmail.dat
Type: application/ms-tnef
Size: 3010 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20050816/69e4e974/attachment-0001.bin>
More information about the fedora-list
mailing list