Path: csiph.com!x330-a1.tempe.blueboxinc.net!usenet.pasdenom.info!aioe.org!.POSTED!not-for-mail
From: jacob navia <jacob@spamsink.net>
Newsgroups: comp.os.linux.development.apps
Subject: Re: Security problem
Date: Wed, 31 Aug 2011 02:20:10 +0200
Organization: lccwin
Lines: 24
Message-ID: <j3junq$bln$1@speranza.aioe.org>
References: <j3jrp5$534$1@speranza.aioe.org> <cd90j8-mnq.ln1@crazy-horse.bildanet.com>
Reply-To: jacob@jspamsink.org
NNTP-Posting-Host: NrSxh4/4m6GGV3H5e40VBw.user.speranza.aioe.org
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 8bit
X-Complaints-To: abuse@aioe.org
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:6.0) Gecko/20110812 Thunderbird/6.0
X-Notice: Filtered by postfilter v. 0.8.2
Xref: x330-a1.tempe.blueboxinc.net comp.os.linux.development.apps:252

Le 31/08/11 01:47, GangGreene a écrit :
> jacob navia wrote:
>
>> I have several computers that try to enter my machine via
>> ssh. My log files are swamped by this people trying all
>> possible user names several times a second.
>>
>> Is there a way to tell the ssh daemon to stop accepting more than 1
>> request each minute after it fails (say) 3 times?
>>
>> Something like the "login" behavior?
>>
>> Thanks in advance for any help
>
>
> http://hostingfu.com/article/ssh-dictionary-attack-prevention-with-iptables
>
> http://www.digitalsanctuary.com/tech-blog/debian/using-iptables-to-prevent-
> ssh-brute-force-attacks.html
>
>

Thank you very much.