I have the following in my firewall: -A INPUT -p tcp --dport 12345 -m recent --set -A INPUT -p tcp --dport ssh -m state --state NEW \ -m recent --update --seconds 43200 -j ACCEPT This will only allow SSH from a computer which has telneted to port 12345 (obviously I use something else) in the past 12 hours (even the simple windows telnet will work, it's just important to try to connect). Obviously the above could be made more complicated with more than 1 port having to be 'telneted' but I doubt it's worth the trouble. Cheers, MaZe.
Entries in /var/log/messages
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Entries in /var/log/messages
- From: maze at cela.pl (Maciej Żenczykowski)
- Date: Mon Aug 22 08:50:13 2005
- In-reply-to: <20050822010957.22063.qmail@xxxxxxxxxxxxxxxxx>
- References: <20050822010957.22063.qmail@xxxxxxxxxxxxxxxxx>
- References:
- Entries in /var/log/messages
- From: Jeffrey Means
- Entries in /var/log/messages
- Prev by Date: Job opportunities for Linux. [OT] -- certifications
- Next by Date: Has anyone got dvd::rip to work in CentOS?
- Previous by thread: Re: Entries in /var/log/messages -- SSH Service Do's
- Next by thread: Entries in /var/log/messages
- Index(es):
 |