annoying brute force attack attempt using ssh
Tim Evans
tkevans at tkevans.com
Thu May 15 11:23:15 UTC 2008
Scott van Looy wrote:
>
> So I ran
> iptables -A INPUT -s 193.239.125.119 -j DROP
This is likely a losing battle, as you'll never be able to keep adding
rules for individual IP's.
You can, however, configure iptables to *allow* only a specified list of
IP addresses (i.e., the ones you approve of).
You should also configure sshd to allow only a specified list of users.
man sshd_config for details.
If this is not manageable, take a look at denyhosts
(http://denyhosts.sourceforge.net/)
--
Tim Evans, TKEvans.com, Inc. | 5 Chestnut Court
UNIX System Admin Consulting | Owings Mills, MD 21117
http://www.tkevans.com/ | 443-394-3864
http://www.come-here.com/News/ | tkevans at tkevans.com
More information about the fedora-list
mailing list