On 7/26/06, Peter Allgeyer <[EMAIL PROTECTED]> wrote: [snip]
There's another table for <sshlockout>, but it's not referenced anywhere in a ruleset. Don't know, if useful for anything, nor if it's a stub already for a general solution to SSH brute force attacks.
This works with our ssh lockout utility that aws broken up until a few weeks ago. If someone tries to login via SSH and enters a wrong password that person should immediately be blocked from ssh. Scott
