> Seems I'm experiencing a DoS against vsftp login. Anybody got a good way > to limit the number of failed login attempts by one IP address? > While it's not specific against the one ip address, you can use the --limit option of iptables to restrict ftp connection attempts to a max set rate. For example: --limit 5/minute would slow things down considerably. There's also --limit-burst and a couple other options that would help out. -- Jim Perrin System Architect - UIT Ft Gordon & US Army Signal Center
Crashing Nameservers
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Crashing Nameservers
- From: jperrin at gmail.com (Jim Perrin)
- Date: Sat Dec 31 01:22:29 2005
- In-reply-to: <43B5C828.4090203@xxxxxxxx>
- References: <43B5C51E.5030202@xxxxxxxx> <43B5C828.4090203@xxxxxxxx>
- Follow-Ups:
- Re: Access Threshhold by IP -- WAS: Crashing Nameservers
- From: Bryan J. Smith
- Re: Access Threshhold by IP -- WAS: Crashing Nameservers
- References:
- Crashing Nameservers
- From: John Hinton
- Crashing Nameservers
- From: John Hinton
- Crashing Nameservers
- Prev by Date: Crashing Nameservers
- Next by Date: RPMS's rebuilt or upstream one's used
- Previous by thread: Crashing Nameservers
- Next by thread: Re: Access Threshhold by IP -- WAS: Crashing Nameservers
- Index(es):
 |