[Gllug] limiting ssh zombie login attempts
Bruce Richardson
itsbruce at uklinux.net
Tue Oct 19 17:06:25 UTC 2004
On Tue, Oct 19, 2004 at 02:11:33PM +0100, Martin wrote:
> On Tue, 2004-10-19 at 14:04, Andre Newman wrote:
> > > Using iptables' 'limit' match to limit SSH connections to two every 5
> > > minutes should work reasonably well - it'd take a very long time to try
> >
> > I'm using
> > -m state --state NEW -m limit --limit 5/min --limit-burst 2 -j ACCEPT
>
> That look like a very effective method of being locked out of your own
> server :)
I suppose you could use portknocking to reset the limit.
--
Bruce
The ice-caps are melting, tra-la-la-la. All the world is drowning,
tra-la-la-la-la. -- Tiny Tim.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: Digital signature
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20041019/f33c3d29/attachment.pgp>
-------------- next part --------------
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list