Re: How to stop an active network connection
T o n g wrote:
How can I stop an active network connection? e.g.,
Active Internet connections (w/o servers)
Proto Recv-Q Send-Q Local Address Foreign Address
tcp 0 0 192.168.0.100:ssh ip-72-55-146-217.:35911
Because barbarians are pounding at my sshd gate again:
. . .
Dec 2 16:41:37 helios sshd: Invalid user chad from 126.96.36.199
Dec 2 16:41:37 helios sshd: pam_unix(sshd:auth): check pass; user
Dec 2 16:41:37 helios sshd: pam_unix(sshd:auth): authentication
failure; logname= uid=0 euid=0 tty=ssh ruser=
Dec 2 16:41:39 helios sshd: Failed password for invalid user chad
from 188.8.131.52 port 42328 ssh2
. . .
I shut down my sshd daemon, but the network bandwidth did not drop. The
active connection went away in the netstat output, which is wrong, and
iftop was able to reveal the still-live connection.
Just apt-get install denyhosts. It will update the /etc/hosts.deny
everytime it detects an abusive client.
If you can't explain it simply, you don't understand it well enough.
-- Albert Einstein