subject:"RE\: \[CentOS\] filtering ssh regardless of the port"

Re: [CentOS] filtering ssh regardless of the port

2007-09-19 Thread Bazy

David G. Miller wrote: > David Hrb?c( <[EMAIL PROTECTED]> wrote: > >> Bazy napsal(a): >>> > And yes... I will use layer 7 filtering. >>> > http://l7-filter.sourceforge.net/protocols >>> > > Patch my kernel, my iptables, and "iptables -A INPUT -m layer7 >>> --l7proto >>> > ssh -j DROP" ;) >>

Re: [CentOS] filtering ssh regardless of the port

2007-09-19 Thread David G. Miller

David Hrb?c( <[EMAIL PROTECTED]> wrote: Bazy napsal(a): > And yes... I will use layer 7 filtering. > http://l7-filter.sourceforge.net/protocols > > Patch my kernel, my iptables, and "iptables -A INPUT -m layer7 --l7proto > ssh -j DROP" ;) Yes, the only way. D. Silly question. If you'

Re: [CentOS] filtering ssh regardless of the port

2007-09-19 Thread Bazy

ArcosCom Linux User wrote: > No, there is another way. > Using the l7filter user-space daemon. > > You need to NFQUEUE target with IPTABLES and configure de L7 daemon to do > the work. > > I don't use it, but in http://l7-filter.sourceforge.net/HOWTO-userspace > there is more information about it

Re: [CentOS] filtering ssh regardless of the port

2007-09-19 Thread ArcosCom Linux User

No, there is another way. Using the l7filter user-space daemon. You need to NFQUEUE target with IPTABLES and configure de L7 daemon to do the work. I don't use it, but in http://l7-filter.sourceforge.net/HOWTO-userspace there is more information about it. Regards El Mie, 19 de Septiembre de 200

Re: [CentOS] filtering ssh regardless of the port

2007-09-19 Thread <[EMAIL PROTECTED]>

Bazy napsal(a): > And yes... I will use layer 7 filtering. > http://l7-filter.sourceforge.net/protocols > > Patch my kernel, my iptables, and "iptables -A INPUT -m layer7 --l7proto > ssh -j DROP" ;) Yes, the only way. D. ___ CentOS mailing list CentOS@c

Re: [CentOS] filtering ssh regardless of the port

2007-09-19 Thread Bazy

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jason Pyeron wrote: > Not going to happen for telnet > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > - - > - Jason Pyeron PD Inc. http://www.pdi

RE: [CentOS] filtering ssh regardless of the port

2007-09-18 Thread Ross S. W. Walker

Bazy wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Hello gentlemen and lady's, > > > I am trying to filter ssh traffic regardless of the port the > connection > is opened on. I want to do the same for rlogin and telnet. I know it > would be easier to use a proxy server and onl

RE: [CentOS] filtering ssh regardless of the port

2007-09-18 Thread Jason Pyeron

Not going to happen for telnet -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - - - Jason Pyeron PD Inc. http://www.pdinc.us - - Sr. Consultant10 West 24th Street #100- - +

Re: [CentOS] filtering ssh regardless of the port

Re: [CentOS] filtering ssh regardless of the port

Re: [CentOS] filtering ssh regardless of the port

Re: [CentOS] filtering ssh regardless of the port

Re: [CentOS] filtering ssh regardless of the port

Re: [CentOS] filtering ssh regardless of the port

RE: [CentOS] filtering ssh regardless of the port

RE: [CentOS] filtering ssh regardless of the port

8 matches

Site Navigation

Mail list logo

Footer information