pf and hosts.deny

view
thread

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Vikas N Kumar <vikasnkumar@...>

To: misc <misc@...>

Subject: pf and hosts.deny

Date: Saturday, April 19, 2008 - 10:02 am

Hi

I have OpenBSD 4.2 on a Pentium II laptop running fine, with its ssh port 22
open to the web. However, there are a lot of attacks on that port from
various IP addresses across the globe. Even though I have set maximum number
of tries to just 2, I would like to be able to note down the IP address
(after say 10 unsuccessful login attempts) from where the attacks are coming
in and then dynamically add them to hosts.deny for the next few days or
permanently.

Can pf do this ? I read the manual but could not find such a feature.

I can always write a cron script that reads the messages log file and does
this sort of thing, but I was hoping that if such a feature pre-exists I
wouldn't have to do it.

Any help will be appreciated.

Thanks & Regards
Vikas

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

pf and hosts.deny, Vikas N Kumar, (Sat Apr 19, 10:02 am)

Re: pf and hosts.deny, Vikas N Kumar, (Sun Apr 20, 6:37 pm)

Re: pf and hosts.deny, Lars Noodén, (Sat Apr 19, 12:13 pm)

Re: pf and hosts.deny, Henri Salo, (Sat Apr 19, 11:36 am)

Re: pf and hosts.deny, Curt Micol, (Sat Apr 19, 10:27 am)

Navigation

Mail archive search

Popular discussions


linux-kernel:
Arjan van de Ven	[patch] Add basic sanity checks to the syscall execution patch
Andi Kleen	[PATCH CPA] [1/28] Shrink __PAGE_KERNEL/__PAGE_KERNEL_EXEC on non PAE kernels
Alex Dubov	Re: [2.6.20] tifm_7xx1/mmc not working
Jared Hulbert	[PATCH 00/10] AXFS: Advanced XIP filesystem
git:
Junio C Hamano	More precise tag following
walt	git versus CVS (versus bk)
Stephen R. van den Berg	RFC: grafts generalised
Pierre Habouzit	[PATCH 1/2] Add strbuf_cmp.
openbsd-misc:
Richard Stallman	Real men don't attack straw men
K K	Re: No Blob without Puffy
Stephan A. Rickauer	Re: Net-SNMP segfaults under OpenBSD 4.3
Brian A. Seklecki	sshd_config(5) PermitRootLogin yes
linux-activists:
Jim Winstead Jr.	Re: Root Disk/Book Disk Compatibility
Howard Wei-Hao Pan	[Q] Does Linux work with PCMCIA devices?
Curtis Yarvin	Re: Problem with UNCOMPRESS
Ross Sponholtz	Re: S3

Latest forum posts


How to exec user process in kernel mode.	1 day ago	Linux kernel
[IPSEC]IPSEC_MANUAL_REQID_MAX	1 day ago	Linux kernel
help in UDP catching module..	2 days ago	Linux kernel
Is there anything like Real-time drivers?	4 days ago	Linux general
ns16550 serail console in Linux 2.6.19	4 days ago	Linux general
what class should i use to register my devices	4 days ago	Linux kernel
reset bios pasword toshiba	4 days ago	Hardware
Analysis of Process Scheduling	5 days ago	Linux kernel
RT Kernel and SSH Server Panics	5 days ago	Linux kernel
Resetting the bios password for Toshiba Laptop	6 days ago	Hardware

Show all forums...

Recent Tags

H. Peter Anvin filesystem Linux Andrew Morton -rc quote -rc5 Daniel Phillips Tux3 Linus Torvalds 2.6.27-rc5 -rc4 2.6.27

more tags

Colocation donated by:

Online users

Syndicate