On Wed January 28 2009, Kevin Philp wrote: > Even easier and better add the following to your iptables firewall. This > monitors your connections to the ssh port and drops the connection if > they try more than 4 connections in 10 minutes. I have been using this > for a while - works a treat. > > references at : > > http://www.la-samhna.de/library/brutessh.html > http://www.ducea.com/2006/06/28/using-iptables-to-block-brute-force-attacks >/ > > /sbin/iptables -A ssh-connection -i $EXT -p tcp --dport 22 -m recent > --update --seconds 600 --hitcount 4 --rttl --name SSH -j LOG > --log-prefix "SSH_brute_force "
# /sbin/iptables -A ssh-connection -i $EXT -p tcp --dport 22 -m recent --update --seconds 600 --hitcount 4 --rttl --name SSH -j LOG --log-prefix "SSH_brute_force " Bad argument `tcp' Try `iptables -h' or 'iptables --help' for more information. -- Paul Cartwright Registered Linux user # 367800 Registered Ubuntu User #12459 -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org