Vladimir, Good question. I just tested this and the connection does stay connected to the host until it times out. So although it will block repeated attempts from a single host, a DDOS would be possible from hundreds of unique hosts. The question would be how many open connections can a linux server handle before it will accept no more connections to the SSH service. Thanks, Dave On Fri, 2004-10-15 at 02:09, Vladimir G. Ivanovic wrote: > >>>>> "d" == dave <drinker@xxxxxxxxxxx> writes: > > d> Blocking repeat SSH attacks with IPTables > d> > d> http://www.dsrtech.com/sshblock/ > > At what point (i.e. with how many blocked IP addresses) does networking > begin to slow down? Or is this not really a problem because the checks > are only done at connection setup time? > > --- Vladimir > > -- > Vladimir G. Ivanovic http://leonora.org/~vladimir > Palo Alto, CA 94306 +1 650 678 8014
