Brute Force Detection + Advanced Firewall Policy
Julian Elischer
julian at elischer.org
Mon Dec 19 13:29:00 PST 2005
Arne Woerner wrote:
>--- Hadi Maleki <freebsdlist at nimahost.net> wrote:
>
>
>>Any BFD/AFP softwares available for FreeBSD 4.10?
>>
>>Im getting flooded with ssh and ftp attempts.
>>
>>
>>
>What about a "white list"? I mean, three rules that blocks all
>incoming traffic to those ports (21, 22, the others), and then a
>rule for each "good IP" that allows the connection...
>
>Some time ago I have read in this list something about attempts to
>guess a SSH username and password... Maybe u can find that thread
>in the archive via the Websearch interface?
>
>Maybe it helps to disallow password athentication, because DSA
>public key authentication is much more fun for users and admins...
>
>
possibly look into port-knocking..
>:-))
>
>-Arne
>
>
>__________________________________________________
>Do You Yahoo!?
>Tired of spam? Yahoo! Mail has the best spam protection around
>http://mail.yahoo.com
>_______________________________________________
>freebsd-security at freebsd.org mailing list
>http://lists.freebsd.org/mailman/listinfo/freebsd-security
>To unsubscribe, send any mail to "freebsd-security-unsubscribe at freebsd.org"
>
>
More information about the freebsd-security
mailing list