Re: libssh-Bruteforcer in IPTABLES Chain bannen

To: debian-user-german@lists.debian.org
Subject: Re: libssh-Bruteforcer in IPTABLES Chain bannen
From: Stefan Muthers <grau@tastensuppe.de>
Date: Wed, 30 Mar 2005 22:51:34 +0200
Message-id: <[🔎] 20050330205134.GA7469@grauzone.local>
In-reply-to: <[🔎] Pine.LNX.4.61.0503302135370.11111@sofa.so.antepoth.de>
References: <[🔎] Pine.LNX.4.61.0503301848590.11111@sofa.so.antepoth.de> <[🔎] 20050330184006.GB22916@london087.server4you.de> <[🔎] Pine.LNX.4.61.0503302051040.11111@sofa.so.antepoth.de> <[🔎] m3ll85dje9.fsf@caruso.quasi.local> <[🔎] Pine.LNX.4.61.0503302135370.11111@sofa.so.antepoth.de>


* Thomas Antepoth <debian@antepoth.de>:
> 
> On Wed, 30 Mar 2005, Bruno Hertz wrote:
> 
> > Vielleicht lohnt auch mal ein Blick auf http://blog.andrew.net.au/2005/02/17
> 
> [iptables -m recent ...] 
> 
> Soweit verstanden. Aber diese Module sind sicherlich nicht in:
> 
> ii  iptables              1.2.11-8
> 
> enthalten, oder?
also bei mir mit iptables v1.2.6a und kernel 2.4.27-1-386 funktioniert
folgendes:

  __( 'firewall' )_______________________________________________________
 /
| iptables -A INPUT -p tcp --dport 22 -m recent --update --seconds 60 \
| 			--hitcount 4 -j LOG --log-prefix "SSH_BRUTE_FORCE" 
| iptables -A INPUT -p tcp --dport 22 -m recent --set
| iptables -A INPUT -p tcp --dport 22 -m recent --update --seconds 60 \
|			--hitcount 4 -j DROP
| iptables -A INPUT -p tcp --dport 22 -j ACCEPT
| 
 \______________________________________________________________________

Das Beispiel von //blog.andrew.net.au/2005/02/17
war Anfang des Monats hier schonmal Thema
<[🔎] 20050305183103.GA13293@nexus.palmen.homeip.net>

schönen Abend noch
	Stefan

Reply to:

Follow-Ups:
- Re: libssh-Bruteforcer in IPTABLES Chain bannen
  - From: "Bruno Hertz" <brrhtz@yahoo.de>

References:
- libssh-Bruteforcer in IPTABLES Chain bannen
  - From: Thomas Antepoth <debian@antepoth.de>
- Re: libssh-Bruteforcer in IPTABLES Chain bannen
  - From: Peter Wiersig <peter@friesenpeter.de>
- Re: libssh-Bruteforcer in IPTABLES Chain bannen
  - From: Thomas Antepoth <debian@antepoth.de>
- Re: libssh-Bruteforcer in IPTABLES Chain bannen
  - From: "Bruno Hertz" <brrhtz@yahoo.de>
- Re: libssh-Bruteforcer in IPTABLES Chain bannen
  - From: Thomas Antepoth <debian@antepoth.de>

Prev by Date: Re: libssh-Bruteforcer in IPTABLES Chain bannen
Next by Date: Re: libssh-Bruteforcer in IPTABLES Chain bannen
Previous by thread: Re: libssh-Bruteforcer in IPTABLES Chain bannen
Next by thread: Re: libssh-Bruteforcer in IPTABLES Chain bannen
Index(es):
- Date
- Thread