[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [opensuse-security] SuSefirewall - protect sshd



Otto Rodusek (AP-SGP) wrote:
> Ludwig Nussel wrote:
> > Otto Rodusek (AP-SGP) wrote:
> >   
> >> I'm a bit confused with Susefirewall. I have had a number of robot
> >> attacks against sshd so I set the following rule in SuSefirewall to
> >> limit the number of allowable sshd logins per 60 second period:
> >>
> >> FW_SERVICES_ACCEPT_EXT="0/0,tcp,22,,hitcount=3,blockseconds=60,recentname=ssh"
> >>     
> >
> > Provided that your network interface is in the external zone this
> > should work fine.
> >
> > cu
> > Ludwig
> >   
> Hi Ludwig,
> 
> Yes my interface is indeed in the external zone. From my log files (as
> per below) I can see that it does not however work
> . I'm not sure what to try next to make it work!! Rgds. Otto.

Check the output of

SuSEfirewall2 status

cu
Ludwig

-- 
 (o_   Ludwig Nussel
 //\   
 V_/_  http://www.suse.de/
SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg)

---------------------------------------------------------------------
To unsubscribe, e-mail: opensuse-security+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-security+help@xxxxxxxxxxxx