[Fedora] Re: Blocking SSH ... BUT...

Ashley M. Kirchner ashley at pcraft.com
Tue Sep 18 20:30:21 UTC 2007


Martin Marques wrote:
> You have some problem. If it's in deny.hosts it can't get to the sshd 
> server, unless you have something wrong on the server.
    Yes I do, with constant banging on the service port.  Adding a 
service in hosts.deny won't stop someone from continuously hitting it 
and generating a bunch of  'tcpwrappers (unknown, xxx.xxx.xxx.xxx) 
rejection' messages in syslog.  CONSTANTLY.  However, if I reset the 
connection and block them for the next 120 seconds, it has, so far, 
proven to completely stop the constant banging.  They try once, get a 
reject (from hosts.deny) and the second time they try iptables drops 
their connection they go away.  Case closed.

-- 
W | It's not a bug - it's an undocumented feature.
  +--------------------------------------------------------------------
  Ashley M. Kirchner <mailto:ashley at pcraft.com>   .   303.442.6410 x130
  IT Director / SysAdmin / Websmith             .     800.441.3873 x130
  Photo Craft Imaging                       .     3550 Arapahoe Ave. #6
  http://www.pcraft.com ..... .  .    .       Boulder, CO 80303, U.S.A. 




More information about the fedora-list mailing list