NetBSD-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: help? fighting ssh user/password guessing attempts


On Fri, 17 Oct 2008 14:48:58 -0000 (UTC), 
> Would you mind offering a quick synopsis of how you have implemented
> steps 2 and 3 above?

2 can be easily achieved through the max-src-conn-rate parameter of pf.
If the attacker still manages to consume enough bandwidth that the
function of your network is impaired (this happens not more frequently
than once per month, usually), you simply add a block statement to the
pf.conf for the IP. For laughing, use your voice.


Attachment: signature.asc
Description: PGP signature

Home | Main Index | Thread Index | Old Index