Re: [opensuse] SuSefirewall - protect sshd

---

• From: Marcus Meissner <meissner@xxxxxxx>
• Date: Mon, 10 Mar 2008 14:45:59 +0100

---

On Mon, Mar 10, 2008 at 09:34:39PM +0800, Otto Rodusek (AP-SGP) wrote:

Patrick Shanahan wrote:

* Otto Rodusek (AP-SGP) <otto@xxxxxxxxxxxxxx> [03-10-08 04:16]:

Hi,

I'm a bit confused with Susefirewall. I have had a number of robot
attacks against sshd so I set the following rule in SuSefirewall to
limit the number of allowable sshd logins per 60 second period:

FW_SERVICES_ACCEPT_EXT="0/0,tcp,22,,hitcount=3,blockseconds=60,recentname=ssh"

which I assume will limit sshd logins to only 3 per 60 seconds however

look at the packages: fail2ban
denyhosts

http://download.opensuse.org/repositories/server:/monitoring/SUSE_Linux_10.1
and
http://download.opensuse.org/repositories/network:/utilities/SUSE_Linux_10.1

Hi,

Thanks for the reply - I'm familiar with both packages - however I would
like to know why the iptables command doesn't work. Regardless whether I
use the above packages, I would still like to limit the number of sshd
logins to 3 per minute. Is there a different iptables command to do that?

Drop us a mail over in opensuse-security@xxxxxxxxxxxx perhaps.

Ciao, Marcus
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

---

• Follow-Ups:
  • Re: [opensuse] SuSefirewall - protect sshd
    • From: Otto Rodusek (AP-SGP)

• References:
  • [opensuse] OpenSuse [10-3] SuSefirewall - protect sshd
    • From: Otto Rodusek (AP-SGP)
  • Re: [opensuse] OpenSuse [10-3] SuSefirewall - protect sshd
    • From: Patrick Shanahan
  • Re: [opensuse] SuSefirewall - protect sshd
    • From: Otto Rodusek (AP-SGP)

• Prev by Date: Re: [opensuse] SuSefirewall - protect sshd
• Next by Date: [opensuse] Sudden inability to display a particular website
• Previous by thread: Re: [opensuse] SuSefirewall - protect sshd
• Next by thread: Re: [opensuse] SuSefirewall - protect sshd
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: [opensuse] OpenSuse [10-3] SuSefirewall - protect sshd ... attacks against sshd so I set the following rule in SuSefirewall to ... I use fail2ban and am happy with it, but have you also considered making your ... iptables, but it can't help to give it a try. ... (SuSE) Re: [opensuse] SuSefirewall - protect sshd ... I'm a bit confused with Susefirewall. ... attacks against sshd so I set the following rule in SuSefirewall to ... Thanks for the reply - I'm familiar with both packages - however I would ... like to know why the iptables command doesn't work. ... (SuSE) Re: [opensuse] SuSefirewall - protect sshd ... I'm a bit confused with Susefirewall. ... attacks against sshd so I set the following rule in SuSefirewall to ... which I assume will limit sshd logins to only 3 per 60 seconds however ... like to know why the iptables command doesn't work. ... (SuSE) [opensuse] OpenSuse [10-3] SuSefirewall - protect sshd ... I'm a bit confused with Susefirewall. ... attacks against sshd so I set the following rule in SuSefirewall to ... which I assume will limit sshd logins to only 3 per 60 seconds however ... (SuSE) [opensuse] OpenSuse [10-3] SuSefirewall - protect sshd ... I'm a bit confused with Susefirewall. ... attacks against sshd so I set the following rule in SuSefirewall to ... which I assume will limit sshd logins to only 3 per 60 seconds however ... (SuSE)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Mailing-Lists  > SuSE  > 2008-03