Hello, Richard Horton a écrit : > > A better option would be to drop ssh connections if the number of > attempts from a single ip address exceedes an acceptable limit Preferably the number of *failed* attempts. That's what fail2ban and the like do. > can't see many legit uses for ssh where you you connect and > disconnect multiple times within a 1 minute window) What about scp ? > This can be done using either hashlimit or the recent matches... They don't know about failed attemps. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
