SSH2

[Chris W. Parker]

Burke, Thomas G. <mailto:tg.burke at ngc.com>
    on Wednesday, April 06, 2005 5:06 AM said:

> There's a tool called portsentry that works pretty well on some of
> these things.  You can set up its sensitivity to certain events & it
> will drop (l)users into hosts.deny and also much your ipchains to
> drop anything from that source into your bit bucket, so it appears
> that you just fell off the earth.

That sounds nice.

> Of course, the routes get reset on
> power cycles & so forth (or in my case, I rerun my firewall script
> every midnight to flush out all the rules & reload)

What's the purpose of clearing the list of denied clients? Or did I
misunderstand you?



Chris.