Am 04.04.2011 12:34, schrieb Marian Marinov: >> How is it possible for an attacker to try to logon more then 4 times? >> Can the attacker do this with only one TCP/IP connection without >> establishing a new one? >> Or have the scripts been adapted to this? > > The attackers are not trying constantly.. Just a few bursts of trys. > > Look at denyhosts ( http://denyhosts.sourceforge.net/ ). > I also have a tool for protecting from brute force attacks called Hawk ( > https://github.com/hackman/Hawk-IDS-IPS ). Ok, thanks to both of you, it seems the scripts getting better and better. Will change my iptables rule to keep the blacklist for longer. Thx Rainer _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: sshd: Authentication Failures: 137 Time(s)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: centos@xxxxxxxxxx
- Subject: Re: sshd: Authentication Failures: 137 Time(s)
- From: Rainer Traut <tr.ml@xxxxxx>
- Date: Mon, 04 Apr 2011 15:07:24 +0200
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <201104041334.54306.mm@xxxxxxxx>
- User-agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; de; rv:1.9.2.15) Gecko/20110303 Thunderbird/3.1.9
- Follow-Ups:
- Re: sshd: Authentication Failures: 137 Time(s)
- From: m . roth
- Re: sshd: Authentication Failures: 137 Time(s)
- From: henry ritzlmayr
- Re: sshd: Authentication Failures: 137 Time(s)
- References:
- sshd: Authentication Failures: 137 Time(s)
- From: Rainer Traut
- Re: sshd: Authentication Failures: 137 Time(s)
- From: Marian Marinov
- sshd: Authentication Failures: 137 Time(s)
- Prev by Date: Re: about:plugins <-Re: interview request for ppl who have Shockwave/.Firefox working
- Next by Date: Re: Tips for motherboard with multiple PCI / PCI-e slots
- Previous by thread: Re: sshd: Authentication Failures: 137 Time(s)
- Next by thread: Re: sshd: Authentication Failures: 137 Time(s)
- Index(es):
 |