system is under attack (what can I do more?)

Matthias Fechner idefix at
Fri Jun 18 16:50:02 UTC 2010

Am 18.06.10 17:55, schrieb Jason Dixon:
> Doesn't FreeBSD's version of pf support the overload feature? This is
> how we typically manage ssh bruteforce attempts in OpenBSD/pf-land.

and what you want to do if a user connects authorizied very often in 
lets say 10 seconds?
If you work e.g. with subversion or other tunneled connection 10 
connections in 5 seconds is not seldom.
On pf-level you are not able to distinquish between successfull or 
denied connection or?


"Programming today is a race between software engineers striving to build bigger and better idiot-proof programs, and the universe trying to produce bigger and better idiots. So far, the universe is winning." -- Rich Cook

More information about the freebsd-questions mailing list