Re: Blocking SSH attackers

To: debian-isp@lists.debian.org
Subject: Re: Blocking SSH attackers
From: Michael Dosser <mic@nethack.at>
Date: Mon, 31 Oct 2005 19:00:47 +0100
Message-id: <[🔎] 20051031180046.GB1925@nethack.at>
In-reply-to: <[🔎] 20051031170856.GR9955@TheloniousMonk.laniels.org>
References: <[🔎] 20051031170856.GR9955@TheloniousMonk.laniels.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

hi,

* On 2005-10-31 18:08 <steve@laniels.org> wrote:

> As with a lot of other people, I've noticed lots of attacks
> on SSH recently. Just yesterday, my company got 1,611 failed
> ssh logins within an hour.

I recently saw this project[1] in a FreeBSD mailing list. I tested it
with FreeBSD-5 and it works well out of the box. Beware: it is still 
alpha software. I managed to get it run with Debian/mips after some 
small modifications in the source code, although without using 
iptables - just with its built in database. I haven't tested it 
further nor have I running this software in a production environment. 
But it might be a good starting point.

just my 2 cent,
mic

[1] http://mbsd.msk.ru/pam_af.html

- -- 
RIPE  - Rest in peace ecommerce
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDZlvNlBqA6F2HLAYRAk+QAJ4s1vhMr3Kz1w0jkpWF+oM78LNr5wCgviz2
UwpXYTvjhW1dXZKluQNoZV8=
=t5hE
-----END PGP SIGNATURE-----

Reply to:

References:
- Blocking SSH attackers
  - From: Stephen R Laniel <steve@laniels.org>

Prev by Date: Re: Blocking SSH attackers
Next by Date: Re: Blocking SSH attackers
Previous by thread: Re: Blocking SSH attackers
Next by thread: Re: Blocking SSH attackers
Index(es):
- Date
- Thread