[Fedora] Re: Blocking SSH ... BUT...
Martin Marques
martin at bugs.unl.edu.ar
Tue Sep 18 20:44:53 UTC 2007
Ashley M. Kirchner wrote:
> Martin Marques wrote:
>> You have some problem. If it's in deny.hosts it can't get to the sshd
>> server, unless you have something wrong on the server.
> Yes I do, with constant banging on the service port. Adding a
> service in hosts.deny won't stop someone from continuously hitting it
> and generating a bunch of 'tcpwrappers (unknown, xxx.xxx.xxx.xxx)
> rejection' messages in syslog. CONSTANTLY. However, if I reset the
> connection and block them for the next 120 seconds, it has, so far,
> proven to completely stop the constant banging. They try once, get a
> reject (from hosts.deny) and the second time they try iptables drops
> their connection they go away. Case closed.
Ashley, thats what fail2ban does. :-)
--
21:50:04 up 2 days, 9:07, 0 users, load average: 0.92, 0.37, 0.18
---------------------------------------------------------
Lic. Martín Marqués | SELECT 'mmarques' ||
Centro de Telemática | '@' || 'unl.edu.ar';
Universidad Nacional | DBA, Programador,
del Litoral | Administrador
---------------------------------------------------------
More information about the fedora-list
mailing list