On Monday 2011-04-04 15:35, Gilles wrote: >On Mon, 04 Apr 2011 11:53:26 +0100, William Fitzgerald ><wfitzgerald@xxxxxxxxx> wrote: >>A defense in depth strategy is best. > >Thanks for the infos. I started reading this book from 2007: > >"Linux Firewalls - Attack Detection and Response with iptables, psad, >and fwsnort" >www.amazon.fr/Linux-Firewalls-Detection-Response-iptables/dp/1593271417 > >And I'll try compiling sshguard so it can reconfigure iptables on the >fly in case someone's trying a brute-force attack on Asterisk. fail2ban is more flexible, it doesn't just lookf or ssh. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
