 | | | iptables module | iptables module 2005-07-17 - By David Mackintosh
Back
In the spirit of going around problems you can't immediately solve, see
my ssh solution:
http://xdroop.dhs.org/space/Linux/Limited+SSH+Access
On Sun, Jul 17, 2005 at 12:04:19PM -0400, Joshua Jensen wrote:
> I'm pretty sure you have to recompile your kernel and/or iptables to get
> this functionality. I'm not sure how Red Hat decides which modules to
> include.
>
> Joshua
>
>
> On Sat, Jul 16, 2005 at 08:09:52PM +0100, John Crowhurst wrote:
> > Hello,
> >
> > I have a problem with bruteforce SSH attacks, so I found this iptables
> > rule online:
> >
> > iptables -A INPUT -i eth0 -p tcp -m tcp --dport 22 -m conntrack --ctstate
> > NEW -m recent --set --name sshscans --rsource iptables -A INPUT -m recent
> > --rcheck --seconds 60 --hitcount 10 --name sshscans --rsource -j DROP
> >
> > Unfortunately, on Redhat EL3 iptables flags up that it can't find
> > libipt_recent.so
> >
> > Is this available in an RPM to simply be installed or will I need to
> > recompile the kernel, iptables etc?
> >
> > Thanks in advance,
> >
> > John
> >
> > --
> > Taroon-list mailing list
> > Taroon-list@(protected)
> > http://www.redhat.com/mailman/listinfo/taroon-list
>
> --
> Joshua Jensen
> joshua@(protected)
> "If God didn't want us to eat animals, why did he make them out of meat?"
>
> --
> Taroon-list mailing list
> Taroon-list@(protected)
> http://www.redhat.com/mailman/listinfo/taroon-list
--
/\oo/\
/ /()\ \ David Mackintosh | Public Key:
dave@(protected) | http://www.xdroop.com/dave/gpg.html
$ gpg --recv-keys --keyserver subkeys.pgp.net 4C032504
Mystery attachment? http://xdroop.dhs.org/space/GPG
--
Taroon-list mailing list
Taroon-list@(protected)
http://www.redhat.com/mailman/listinfo/taroon-list
Earn $52 per hosting referral at Lunarpages.
|
|
|