Re: Blocking SSH attackers

To: debian-isp@lists.debian.org
Subject: Re: Blocking SSH attackers
From: Rudi Starcevic <tech@wildcash.com>
Date: Tue, 01 Nov 2005 10:25:16 +1000
Message-id: <[🔎] 4366B5EC.6030507@wildcash.com>
In-reply-to: <[🔎] 4366B37A.7010507@emenaker.com>
References: <20051031170856.GR9955@TheloniousMonk.laniels.org> <43665F51.7010302@chat-net.ch> <[🔎] 4366A9AB.5000602@wildcash.com> <[🔎] 4366B37A.7010507@emenaker.com>

Hi Joe,

>> How is this any better that just using an iptables/ipchains rule?
I don't want to get into iptables vs tcpwrappers .. they are both there
for use.

Mostly new users could use a simple solution like this and grow into
Iptables.
For example my home box uses DenyHosts and my production server use
Iptables.

>> ith denyhosts, I'd think that they wouldn't get blocked until the
script goes and checks the logs again...
It can run in daemon mode. It has all the features you would expect plus
more.
There are many tools available, DenyHosts is a nice example of an easy
to use yet very advanced solution.

Cheers,
Rudi.

Reply to:

References:
- Re: Blocking SSH attackers
  - From: Rudi Starcevic <tech@wildcash.com>
- Re: Blocking SSH attackers
  - From: Joe Emenaker <joe@emenaker.com>

Prev by Date: Re: Blocking SSH attackers
Next by Date: Re: Blocking SSH attackers
Previous by thread: Re: Blocking SSH attackers
Next by thread: Re: Blocking SSH attackers
Index(es):
- Date
- Thread