 | | | iptables module | iptables module 2005-07-17 - By Garrick Staples
Back
On Sun, Jul 17, 2005 at 12:13:38PM -0400, David Mackintosh alleged:
> On Sun, Jul 17, 2005 at 12:04:19PM -0400, Joshua Jensen wrote:
> > On Sat, Jul 16, 2005 at 08:09:52PM +0100, John Crowhurst wrote:
> > > Hello,
> > >
> > > I have a problem with bruteforce SSH attacks, so I found this iptables
> > > rule online:
> > >
> > > iptables -A INPUT -i eth0 -p tcp -m tcp --dport 22 -m conntrack --ctstate
> > > NEW -m recent --set --name sshscans --rsource iptables -A INPUT -m recent
> > > --rcheck --seconds 60 --hitcount 10 --name sshscans --rsource -j DROP
> > >
> > > Unfortunately, on Redhat EL3 iptables flags up that it can't find
> > > libipt_recent.so
> > >
> > > Is this available in an RPM to simply be installed or will I need to
> > > recompile the kernel, iptables etc?
> >
> > I'm pretty sure you have to recompile your kernel and/or iptables to get
> > this functionality. I'm not sure how Red Hat decides which modules to
> > include.
> >
>
> In the spirit of going around problems you can't immediately solve, see
> my ssh solution:
>
> http://xdroop.dhs.org/space/Linux/Limited+SSH+Access
I haven't tried this yet, but I like this approach:
http://www.hexten.net/sw/pam_abl/index.mhtml
--
Garrick Staples, Linux/HPCC Administrator
University of Southern California
--
Taroon-list mailing list
Taroon-list@(protected)
http://www.redhat.com/mailman/listinfo/taroon-list
Earn $52 per hosting referral at Lunarpages.
|
|
|