Filtering IP addresses by domain name

Mailing List

Home

Forum Home

Linux - General Red Hat Linux discussion list

Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)

Installation - Getting started with Red Hat Linux

Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)

Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)

Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)

Apache Web Server

Oracle database, Microsoft SQL server ...

Subjects

•	application/x mplayer2 plugin
•	RPM error: db4 error(16) from dbenv >remove: Device or resource busy
•	Command stream end of file while reading
•	X Windows problem (xauth)
•	Upgrading openoffice 1 1 rpm
•	FTP: connection refused
•	FTP: connection refused
•	mount: /dev/cdrom: is not a valid block device
•	Dell Precision 650, RedHat 9, no sound
•	how to trace the cause resulting in the crash of bind server
•	Virus on the list
•	UNINSTALL RPM MYSQL
•	usb pen drives: mounting as a user
•	broadcom network interface
•	make mrproper
•	sendmail configuration on redhat
•	Couldn 't open PID file /var/run/named/named pid Permission denied
•	Promise 378 controller
•	kernel 2 6 and /dev/sound/mixer not found
•	Problem using up2date
•	mrtg step by step howto/configuration for a newbie?
•	Compiling and Installing Kernel 2 6
•	Can 't locate module ppp0, can 't locate module ppp compress 21
•	HOW I CAN MAKE BOOTABLE FLOPPY DISKET
•	Lotus Notes under Wine
•	/etc/security/limits conf question
•	Intel E/1000 driver
•	Command stream end of file while reading
•	rpm database corrupt
•	qla2300 modules

Filtering IP addresses by domain name

Filtering IP addresses by domain name

2005-06-06 - By An~e Vidmar

Back

Reply: 1 2 3 4 5

OOOps, there is a tiny mistake there, instead of parameter "IP_of_your_SSH
_server" you shold put there IP range of IP's that you DO want to have access to
your SSH server box.

Regards,

An?e

-- --Original Message-- --
From: redhat-list-bounces@(protected) [mailto:redhat-list-bounces@(protected)] On
Behalf Of An?e Vidmar
Sent: Monday, June 06, 2005 3:59 PM
To: General Red Hat Linux discussion list
Subject: RE: Filtering IP addresses by domain name

First of all change the port of your SSH server, perhaps give it a large number
such as 37854 (juas an example). Just doing this, will reduce your ssh attacks
for 99% ;-)

Next, you want to do change following files, to match:

/etc/hosts.deny
ALL:ALL

...and:

/etc/hosts.allow
sshd: IP_of_your_SSH_server

Next, for IP tables do:

iptables -P INPUT DROP
iptables -A INPUT -s IP_of_your_SSH_server --dport your_new_ssh_port -j ACCEPT

This should be bulletproof (in theory), but only changing the ssh port, will
reduce your ssh attacks for 99%, you'll see :)

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@(protected)?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

Earn $52 per hosting referral at Lunarpages.