Illegal access attempt - FreeBSD 5.4 Release - please advise

Peter N. M. Hansteen peter at
Thu Aug 25 16:05:32 GMT 2005

"Chris St Denis" <chris at> writes:

> How can I easily auto deny after x failed attempts? Is this an sshd setting?
> I could find it.
> Is there something in ports that will firewall off somebody who is brute
> forcing?

With PF, it's fairly easy to set up with max-src-conn, max-src-conn-rate
overload <tableofbadbuys> in your pass rule.  See pf.conf(5) for
details.  There's probably some magic around to make this doable with
other firewalls as well.

Peter N. M. Hansteen, member of the first RFC 1149 implementation team
"First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales"

More information about the freebsd-questions mailing list