1 |
Jeremy Brake a écrit : |
2 |
|
3 |
>Hey all, |
4 |
> |
5 |
>I'm looking for an app/script which can monitor for failed ssh logins, |
6 |
>and block using IPTables for $time after $number of failed logins (an |
7 |
>exclusion list would be handy as well) so that I can put a quick stop to |
8 |
>these niggly brute-force ssh "attacks" I seem to be getting more and |
9 |
>more often. |
10 |
> |
11 |
>Anyone have any ideas? |
12 |
> |
13 |
> |
14 |
Yep: emerge fail2ban (http://sourceforge.net/projects/fail2ban). |
15 |
It's an excellent script written in python that can monitor all |
16 |
unsuccessfull logins (ssh, apache) |
17 |
There's a fail2ban.conf file where you can define many options to |
18 |
protect you from a Dos. |
19 |
|
20 |
>Thanks, Jeremy B |
21 |
> |
22 |
> |
23 |
Have a nice day. |
24 |
|
25 |
-- |
26 |
Christophe Garault |
27 |
-- |
28 |
gentoo-security@g.o mailing list |