Date: Wed, 7 May 2008 18:31:13 +0200 From: Mel <fbsd.questions@rachie.is-a-geek.net> To: freebsd-questions@freebsd.org Cc: Norbert Papke <fbsd-ml@scrapper.ca> Subject: Re: [SSHd] Increasing wait time? Message-ID: <200805071831.13898.fbsd.questions@rachie.is-a-geek.net> In-Reply-To: <200805062116.19999.fbsd-ml@scrapper.ca> References: <q7412457qoumm8v8dbth10fug2ctbrlfp0@4ax.com> <200805062116.19999.fbsd-ml@scrapper.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wednesday 07 May 2008 06:16:19 Norbert Papke wrote:
> On May 6, 2008, Gilles wrote:
> > Is there a way to configure SSHd, so that the wait time between login
> > attempts increases after X failed tries?
>
> I run sshd via inetd rather than as a stand-alone daemon. inetd provides
> optional rate limiting functionality. For instance. putting
>
> ssh stream tcp nowait/20/4/10 root /usr/sbin/sshd sshd -i
>
> into /etc/inetd.conf set a limit of
>
> * 20 overall ssh connections
> * 4 connection attempts per minute
> * at most 10 connections from a single IP
>
> This works very well on a personal server, not sure how it scales up.
So if I copy over some files via scp, I can lock myself out. Fun stuff ;)
--
Mel
Problem with today's modular software: they start with the modules
and never get to the software part.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200805071831.13898.fbsd.questions>