Results 1 to 10 of 22

Thread: iptables block attemtps

Thread Tools
- Show Printable Version
- Subscribe to this Thread…
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

November 25th, 2012 #1
dkardell

View Profile

View Forum Posts

Private Message

First Cup of Ubuntu
Join Date

Nov 2012

Beans

10
iptables block attemtps
Its been suggested that I use the following but not wure what the first line does:

Alternately you may learn to use iptables. Iptables has several additional features including the ability to black list an ip address after failed attempts.

Code:

sudo iptables -A INPUT -p tcp --dport 22 -m state --state NEW -m recent --set --name SSH --rsource -j ACCEPT sudo iptables -A INPUT -m recent --update --seconds 600 --hitcount 8 --rttl --name SSH --rsource -j DROP

"--hit count" is the number of new connections. Keep in mind each new connection gives multiple opportunities to enter a password. If you use scp, use a higher hitcount as each file will be a new ssh session.

"--seconds" How long an ipaddress will be blacklisted. 10 minutes is usually sufficient to deter most "script kiddies".

Quick Navigation Security Top

« Previous Thread | Next Thread »

Bookmarks

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is Off
HTML code is Off

Ubuntu Forums Code of Conduct

All times are GMT +1. The time now is 01:56 PM.

vBulletin ©2000 - 2024, Jelsoft Enterprises Ltd. Ubuntu Logo, Ubuntu and Canonical © Canonical Ltd. Tango Icons © Tango Desktop Project.
User contributions on this site are licensed under the Creative Commons Attribution Share Alike 4.0 International License. For details and our forum data attribution, retention and privacy policy, see here

Thread: iptables block attemtps

Thread Tools

Display

Threaded View

iptables block attemtps

Bookmarks

Bookmarks

Posting Permissions