T o n g wrote:

Hi,
How can I stop an active network connection? e.g.,
$ netstatActive Internet connections (w/o servers)Proto Recv-Q Send-Q Local Address Foreign AddressStatetcp 0 0 192.168.0.100:ssh ip-72-55-146-217.:35911ESTABLISHED
Because barbarians are pounding at my sshd gate again:

 . . .
 Dec  2 16:41:37 helios sshd[9201]: Invalid user chad from 72.55.146.217
Dec 2 16:41:37 helios sshd[9201]: pam_unix(sshd:auth): check pass; userunknownDec 2 16:41:37 helios sshd[9201]: pam_unix(sshd:auth): authenticationfailure; logname= uid=0 euid=0 tty=ssh ruser=rhost=ip-72-55-146-217.static.privatedns.comDec 2 16:41:39 helios sshd[9201]: Failed password for invalid user chadfrom 72.55.146.217 port 42328 ssh2
 . . .

I shut down my sshd daemon, but the network bandwidth did not drop. The
active connection went away in the netstat output, which is wrong, andiftop was able to reveal the still-live connection.

Just apt-get install denyhosts. It will update the /etc/hosts.denyeverytime it detects an abusive client.

Please help.
thanks



--

If you can't explain it simply, you don't understand it well enough.
                                       -- Albert Einstein

Reply to:

References:
- How to stop an active network connection
  - From: T o n g <mlist4suntong@yahoo.com>

Prev by Date: Re: How to stop an active network connection
Next by Date: new email test to debian user
Previous by thread: Re: How to stop an active network connection
Next by thread: Re: How to stop an active network connection
Index(es):
- Date
- Thread

Re: How to stop an active network connection