[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Fedora] Re: Blocking SSH ... BUT...



Ashley M. Kirchner wrote:
Martin Marques wrote:
You have some problem. If it's in deny.hosts it can't get to the sshd server, unless you have something wrong on the server.
Yes I do, with constant banging on the service port. Adding a service in hosts.deny won't stop someone from continuously hitting it and generating a bunch of 'tcpwrappers (unknown, xxx.xxx.xxx.xxx) rejection' messages in syslog. CONSTANTLY. However, if I reset the connection and block them for the next 120 seconds, it has, so far, proven to completely stop the constant banging. They try once, get a reject (from hosts.deny) and the second time they try iptables drops their connection they go away. Case closed.

Ashley, thats what fail2ban does. :-)

--
 21:50:04 up 2 days,  9:07,  0 users,  load average: 0.92, 0.37, 0.18
---------------------------------------------------------
Lic. Martín Marqués         |   SELECT 'mmarques' ||
Centro de Telemática        |       '@' || 'unl.edu.ar';
Universidad Nacional        |   DBA, Programador,
    del Litoral             |   Administrador
---------------------------------------------------------


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]