[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [opensuse-security] SuSefirewall - protect sshd



Boyd Lynn Gerber wrote:
> I always add this to SuSEfirewall2-custom
>
> iptables -A INPUT -p tcp --syn --dport 22 -i eth0 -m recent --name
> sshattack --set
> iptables -A INPUT -m recent --name sshattack --rcheck --seconds 60
> --hitcount 5 -j LOG --log-prefix 'SSH attack: '
> iptables -A INPUT -m recent --name sshattack --rcheck --seconds 60
> --hitcount 5 -j DROP
> iptables -A INPUT -p tcp --syn --dport 20:21 -i eth0 -m recent --name
> ftpattack --set
>
> --
> Boyd Gerber <gerberb@xxxxxxxxx>
> ZENEZ	1042 East Fort Union #135, Midvale Utah  84047
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: opensuse-security+unsubscribe@xxxxxxxxxxxx
> For additional commands, e-mail: opensuse-security+help@xxxxxxxxxxxx
>   
Hi Boyd,

Thanks for the tip. I'll try it and see if that works out. Rgds. Otto.
---------------------------------------------------------------------
To unsubscribe, e-mail: opensuse-security+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-security+help@xxxxxxxxxxxx