因 mail 有sasl 但使用者密碼被破解,寄廣告信
想到法子故除了改密碼外,若有人用暴力破解密碼時
把這個 IP ban 掉
http://lists.andrew.cmu.edu/pipermail/i ... 36430.html
I think a feature like this is likely to result in a denial of service to yourself :)
I use sshguard which can parse many different program's outputs (not just SSH) for failed login attempts and then add a rule to a firewall to block the IP making the attempts.
It has support for many different firewall types - I use PF but it does ipfw, ip tables, etc etc..
It is probably available as a package for your OS/distro or you can get it from http://www.sshguard.net/
http://www.sshguard.net/
http://www.sshguard.net/
Re: http://www.sshguard.net/
安裝說明
http://www.sshguard.net/docs/setup/compile-install/
http://www.sshguard.net/docs/setup/compile-install/
代碼: 選擇全部
./configure --with-firewall=iptables
make
make install