Odd ssh attacks?
Matthew Carpenter
matt at eisgr.com
Thu Jul 19 12:02:08 UTC 2007
On Thursday 19 July 2007, David Ford wrote:
> [...]
> iptables -A INPUT -i eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT
> iptables -A INPUT -p tcp -i eth0 --dport 22 -m state --state NEW -m
> recent --name sshprobe --set -j ACCEPT
> iptables -A INPUT -p tcp -i eth0 --dport 22 -m state --state NEW -m
> recent --name sshprobe --update --seconds 60 --hitcount 3 -j LOGDROP
> [...]
>
> ...making it happen in kernel space where it's far less resource
> intensive and doesn't require any additional software installation or
> configuration.
>
> -david
Thank you David! That's something I didn't know about.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20070719/81309ad3/attachment.sig>
More information about the ubuntu-users
mailing list