Date: Mon, 15 May 2006 21:29:25 -0400 From: "Scott Ullrich" <sullrich@gmail.com> To: "Max Laier" <max@love2party.net> Cc: freebsd-pf@freebsd.org Subject: Re: promt solution with max-src-conn-rate Message-ID: <d5992baf0605151829t34fc8a90kec1b7212544f4423@mail.gmail.com> In-Reply-To: <55278.192.168.4.1.1147735542.squirrel@mail.abi01.homeunix.org> References: <44680266.2090007@azimut-tour.ru> <446873D3.7090703@azimut-tour.ru> <55e8a96c0605150907k49af4454t5d0431ea036e11bc@mail.gmail.com> <200605151823.17265.viktor.vasilev@stud.tu-darmstadt.de> <fee88ee40605151617x75001284x54b9f33f89b7c339@mail.gmail.com> <55278.192.168.4.1.1147735542.squirrel@mail.abi01.homeunix.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 5/15/06, Max Laier <max@love2party.net> wrote: > You have to be aware that this otoh might open you to DoS attacks. Peopl= e > spoofing connections from your address will lock you out from your own > server. An alternative is available for PF that monitors the ssh syslog. Take a look at: http://pfsense.com/cgi-bin/cvsweb.cgi/tools/pfPorts/sshlockout_pf/files/ssh= lockout_pf.c?rev=3D1.1 Scott
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?d5992baf0605151829t34fc8a90kec1b7212544f4423>