pf suggestions for paced attack
Adam Vande More
amvandemore at gmail.com
Mon May 3 16:48:20 UTC 2010
On Mon, May 3, 2010 at 11:39 AM, John <john at starfire.mn.org> wrote:
> Hi, Matthew. Indeed, yes, you may not recall, but my rules are
> based on a set that I originally got from you, and I do, in fact,
> have a white list, which I should have mentioned, but some of my
> users are "road warriors" and could be coming from virtually anywhere.
> You're right, though - it's time to look into alternatives to
> password-based authenticaion. I think I've taken password-based
> protection and rate adaptive rules to their logical limit.
>
>
What's wrong with denyhosts? Key-based authentication has it's own set
pitfalls. I'm far more likely to lose my usb stick than my password. I
imagine there are other like me.
--
Adam Vande More
More information about the freebsd-questions
mailing list