Illegal access attempt - FreeBSD 5.4 Release - please advise
Peter N. M. Hansteen
peter at bgnett.no
Thu Aug 25 16:05:32 GMT 2005
"Chris St Denis" <chris at aebc.com> writes:
> How can I easily auto deny after x failed attempts? Is this an sshd setting?
> I could find it.
>
> Is there something in ports that will firewall off somebody who is brute
> forcing?
With PF, it's fairly easy to set up with max-src-conn, max-src-conn-rate
overload <tableofbadbuys> in your pass rule. See pf.conf(5) for
details. There's probably some magic around to make this doable with
other firewalls as well.
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/
"First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales"
More information about the freebsd-questions
mailing list