Date: Sun, 22 Jun 2014 18:52:41 -0700 From: Patrick <gibblertron@gmail.com> To: Chris Maness <chris@chrismaness.com> Cc: "=?utf-8?Q?freebsd-questions=40freebsd.org?=" <freebsd-questions@freebsd.org> Subject: Re: PAM: Authentication Attack? Message-ID: <56661E7D781742348823CD9431ACA148@gmail.com> In-Reply-To: <CANnsUMFhpS9KSzVneSd1gi_OqXkb%2BWH6eL1sZ=N9LSDdCLv9Uw@mail.gmail.com> References: <CANnsUMFv06Dot6FDP2Z7enuWcT5ktjJ0BROHkYAnFpEwOmwp2g@mail.gmail.com> <CANnsUMFhpS9KSzVneSd1gi_OqXkb%2BWH6eL1sZ=N9LSDdCLv9Uw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
If you haven't settled on anything, I've found fail2ban to be extremely powerful, flexible, and quick to respond. Comes with lots of examples for different firewall configs. If memory serves, it's security/py-fail2ban in ports. Patrick On Sunday, June 22, 2014 at 8:28, Chris Maness wrote: > After digging around I am going to use sshgaurd-pf. Any opinions on > this software? > > Chris > > On Sun, Jun 22, 2014 at 8:00 AM, Chris Maness <chris@chrismaness.com> wrote: > > I am running denyhost for failed sshd logins, but I am not sure if it > > blocks passwordless PAM attempts. I am having a lot of hits right now > > on PAM failures for my root account. > > > > Any suggestions as far as a good way to deal with this? > > > > Thanks, > > Chris > > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?56661E7D781742348823CD9431ACA148>