Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back > Blogs > Musings on technology, philosophy, and life in the corporate world
User Name


Hi. I'm a Unix Administrator, mathematics enthusiast, and amateur philosopher. This is where I rant about that which upsets me, laugh about that which amuses me, and jabber about that which holds my interest most: Unix.

Auto-block ssh brute force attacks using built-in tools (OpenBSD and Linux)

Posted 08-30-2012 at 01:28 AM by rocket357 (Musings on technology, philosophy, and life in the corporate world)

I've run a cool trick for a while on my OpenBSD firewall at home, where traffic from any given ip address and port 22 on the firewall is rate limited. If an ip exceeds the given rate, it is put into a ban list (table, actually) that the firewall is configured to drop all traffic from. It works well, and the same functionality can be setup in Linux, too.

To set it up on OpenBSD (this is lifted verbatim from the OpenBSD website pf manual, hence port www instead of port ssh):
Posted in Uncategorized
Views 896 Comments 0 rocket357 is offline


All times are GMT -5. The time now is 09:01 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration