>> consider inverting the behaviour of your log-watcher.  Use something
>> like the port-knocking technique to open temporary access to the ssh
>
> Can anyone recommend software for port-knocking? There are several
> implementations, many using iptables. So far, there seems to be no
> package in pkgsrc and I wouldn't want to waste time trying many/all
> of them.

for the records: there was a review in the german iX magazine in=20
september 2003:

Joachim Baumann, Christian Hirzel, Markus Stoll
Doppelt gen=E4ht
SSH-Zug=E4nge durch PGP und TCP-Wrapper sicherer machen
praxis
iX 9/03, Seite 102

i'll send you another mail privately as i guess you speak german ;)

regards & hth,

--=20
mit vorz=FCglichster Hochachtung/best regards,

Timo Sch=F6ler
//macfinity -- finest IT services | Triftstrasse 39 | 13353 Berlin |=20
Germany
Fon ++49 30 25 20 30 20 | Fax ++49 30 25 20 30 19
PGP data http://www.macfinity.net/~tis/contact/PGPPKB_timo.schoeler.txt