ssh prevent scanning

This is a discussion on ssh prevent scanning within the Linux Networking forums, part of the Linux Forums category; Hi Someone is guesting the password for ssh. How can i board his IP if he fail the password over ...


Go Back   Usenet Forums > Linux Forums > Linux Networking

Reload this Page ssh prevent scanning

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 02-19-2007
cmk128@hotmail.com
 
Posts: n/a
Default ssh prevent scanning
Hi
Someone is guesting the password for ssh. How can i board his IP if
he fail the password over a few times?
thanks
from Peter (cmk128@hotmail.com)

Reply With Quote
  #2 (permalink)  
Old 02-19-2007
J. Sommers
 
Posts: n/a
Default Re: ssh prevent scanning
On Mon, 19 Feb 2007 06:10:37 -0800, cmk128 wrote:

> Hi
> Someone is guesting the password for ssh. How can i board his IP if
> he fail the password over a few times?
> thanks
> from Peter (cmk128@hotmail.com)


This what I use - no-one is allowed more than 3 login attempts within
any 25 second interval.

iptables -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW \
-m recent --set
iptables -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW \
-m recent --update --seconds 25 --hitcount 4 -j DROP
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 04:56 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0