Re: help? fighting ssh user/password guessing attempts

To: Cem Kayali <cemkayali%eticaret.com.tr@localhost>
Subject: Re: help? fighting ssh user/password guessing attempts
From: "Steven M. Bellovin" <smb%cs.columbia.edu@localhost>
Date: Thu, 16 Oct 2008 09:14:27 -0400

On Thu, 16 Oct 2008 13:59:50 +0300
Cem Kayali <cemkayali%eticaret.com.tr@localhost> wrote:

> 
> Well, if someone interested in, i have custom created 'php script'
> run by a cron job and scans auth.log and then creates firewall rule
> if it detects brute force attacks and/or certain number of incorrect 
> authentiacations. It clears all rules occasionally. It may scan other 
> ports as well, such as pop, smtp, ftp.
> 
Does it actually help?  I'd say that that boils down to how long the
attacks last, versus how often you run the script.


                --Steve Bellovin, http://www.cs.columbia.edu/~smb

Follow-Ups:
- Re: help? fighting ssh user/password guessing attempts
  - From: Cem Kayali

References:
- help? fighting ssh user/password guessing attempts
  - From: Thomas Feddersen
- Re: help? fighting ssh user/password guessing attempts
  - From: Thomas Feddersen
- Re: help? fighting ssh user/password guessing attempts
  - From: Volkmar Seifert
- Re: help? fighting ssh user/password guessing attempts
  - From: Ingbert Meyer
- Re: help? fighting ssh user/password guessing attempts
  - From: Cem Kayali

Prev by Date: Re: GNU grep in /usr/bin? WTF?!
Next by Date: Re: help? fighting ssh user/password guessing attempts
Previous by Thread: Re: help? fighting ssh user/password guessing attempts
Next by Thread: Re: help? fighting ssh user/password guessing attempts
Indexes:

Home | Main Index | Thread Index | Old Index