[mythtv-users] SSH break in attempt this morning using mythtv user
yan seiner
yan at seiner.com
Thu Mar 2 01:09:56 UTC 2006
This should block pretty much all attacks from a single source IP. It
will not help against a distributed attack (assuming that eth0 is your
outside if)
iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent \
--set
iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent \
--update --seconds 60 --hitcount 4 -j DROP
--Yan
More information about the mythtv-users
mailing list