Re: attack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: attack
From: David Cary Hart <Fedora@xxxxxxxxxxx>
Date: Mon, 09 May 2005 11:04:10 -0400
In-reply-to: <000001c554a4$a15eee10$7a0101c0@pccat03>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <000001c554a4$a15eee10$7a0101c0@pccat03>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

On Mon, 2005-05-09 at 16:37 +0200, roland brouwers wrote:
> Hello everybody,
> 
> Someone is attacking for a certain time on port SSH2
> He is trying to login as root and uses all kind of usernames.
> See annexed textfile 
> 
> How can I block a user after x failed logins?
> Can I do something else?

I use the swatch daemon to move them to the firewall after one attempt.
I believe that there is a swatch rpm in extras.
-- 
Multi-RBL Check:         http://www.TQMcube.com/rblcheck.htm
Kill Spam at the Source: http://www.TQMcube.com/spam_trap.htm
Today's Spam Trap Adds:  http://www.TQMcube.com/BlockedToday
RBLDNSD HowTo:           http://www.TQMcube.com/rbldnsd.htm

Follow-Ups:
- RE: attack
  - From: bruce
- Re: attack
  - From: David Hoffman

References:
- attack
  - From: roland brouwers

Prev by Date: Re: Aliases Question
Next by Date: up2date problem
Previous by thread: Re: attack
Next by thread: Re: attack
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]