Dos attack on SSH

Dustin Larmeir dustin at larmeir.com
Sat Jul 10 22:42:37 UTC 2010 

For Apache, use mod_evasive. This will deny connections when a user exceeds
a preset number of connections. If you want to restrict access to ssh for
your IP address only, tcpwrappers would be an idea also ( I should have
mentioned that in my previous email)

On Sat, Jul 10, 2010 at 5:38 PM, Dustin Larmeir <dustin at larmeir.com> wrote:

> Another option is BFD http://www.rfxn.com/projects/brute-force-detection/
>
> Dustin
>
>
> On Sat, Jul 10, 2010 at 8:47 AM, Jeff <jeff at virgin.net> wrote:
>
>> You can also use something like denyhosts (http://denyhosts.sf.net). I
>> use
>> it on one of my public facing hosts and it works really well - it will
>> automatically add IPs to hosts.deny after a configurable number of failed
>> logins.
>>
>> Jeff
>>
>>
>>
>> On Sat, Jul 10, 2010 at 10:56 AM, Z.Steven.Schofield
>> <shadowarrx at gmail.com>wrote:
>>
>> > hi:
>> >
>> > On Sat, Jul 10, 2010 at 14:22, Tanweer Noor <tanweer.noor at gmail.com>
>> > wrote:
>> >
>> > > use /etc/hosts.allow option for ssh and for Apache check your
>> httpd.conf
>> > > file for options.
>> > >
>> > >
>> > >
>> > > ~Tanweer
>> > >
>> > > On Fri, Jul 9, 2010 at 10:13 PM, Raj Har <raj4list at gmail.com> wrote:
>> > >
>> > > > Hello all,
>> > > >               i want stop DOS attack(like limited IP address or
>> limited
>> > > > users can access my ssh server {for users i know allowusers option})
>> on
>> > > SSH
>> > > > service by ssh configure file not by iptables.
>> > > > Is there any option in ssh please update me.
>> > > >
>> > > > I need same thing in apache web server i want limited users can
>> access
>> > my
>> > > > website.
>> > > >
>> > > > Thanks
>> > > > --
>> > > > redhat-list mailing list
>> > > > unsubscribe mailto:redhat-list-request at redhat.com
>> ?subject=unsubscribe
>> > > > https://www.redhat.com/mailman/listinfo/redhat-list
>> > > >
>> > >
>> > >
>> > >
>> > > --
>> > > ~ Tanweer
>> > > ----
>> > > --
>> > > redhat-list mailing list
>> > > unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
>> > > https://www.redhat.com/mailman/listinfo/redhat-list
>> > >
>> >
>> > 1. enable SSH on an unusual port such as 2222.It's simply and  very
>> > effective.
>> > 2. disable password login, use PubkeyAuthentication
>> >
>> > regards
>> > --
>> > redhat-list mailing list
>> > unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
>> > https://www.redhat.com/mailman/listinfo/redhat-list
>> >
>> --
>> redhat-list mailing list
>> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
>> https://www.redhat.com/mailman/listinfo/redhat-list
>>
>
>

More information about the redhat-list mailing list