Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Blocking bad sshd bruteforce attempt
- Date: Tue, 11 Jul 2006 08:20:21 -0700
- From: "Hung Vu Nguyen" <vuhung16plus@example.com>
- Subject: Re: [tlug] Blocking bad sshd bruteforce attempt
- References: <78d7dd350607102243j32a8b5f1od4f1ff847e096de0@example.com> <87fyh8349g.fsf@example.com>
2006/7/11, Stephen J. Turnbull <stephen@example.com>:
>>>>> "Hung" == Hung Vu Nguyen <vuhung16plus@example.com> writes:
Hung> I don't worry about that because 'he' is just bruteforcing
Hung> me. My sshd is secured /etc/hosts.allow .
# this is unlikely to work for you outof the box,
# but I only have one host per line in my hosts.allow ;-)
for i in `grep ^ssh /etc/hosts.allow | cut -b5`; do
iptables -A INPUT -p tcp --dport ssh -s $i -j ACCEPT
done
iptables -A INPUT -p tcp --dport ssh -j REJECT
That will work in case of one IP in one line. Mine setting is like this:
ssh: 213.167. 59.95. 130.153. 192.168.1. some.hostname
So it will take some more time to deploy your idea :D
--
Best Regards,
Nguyen Hung Vu
vuhung16plus{remove}@example.com
- References:
- [tlug] Blocking bad sshd bruteforce attempt
- From: Hung Vu Nguyen
- Re: [tlug] Blocking bad sshd bruteforce attempt
- From: Stephen J. Turnbull
- [tlug] Blocking bad sshd bruteforce attempt
- Prev by Date: Re: [tlug] Blocking bad sshd bruteforce attempt
- Next by Date: Re: [tlug] sshd writes password in clear text into /var/log/messages
- Previous by thread: Re: [tlug] Blocking bad sshd bruteforce attempt
- Next by thread: [tlug] sshd writes password in clear text into /var/log/messages
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |