Block ssh login prompt for *.kr *.jp etc.
From: Kim (kimspiracy_at_yahoo.com)
Date: 09/30/04
- Previous message: Romain Kang From:: "Re: sshd delay after failed login"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 30 Sep 2004 08:43:02 -0700
I'm getting annoyed with the brute force ssh login scripts that are
circulating and are clogging up my log files. I noticed that a lot of
the login attempts are coming from other countries. But there is no
chance that I would ever need to ssh into my machine from another
country (i.e. any address that ends in *.kr *.jp etc). I would only
connect from a *.com or *.edu address. I'd really like to set things
up so that ssh connection attempts from other countries are COMPLETELY
IGNORED. I don't even want them to see a login prompt. This way, their
scripts will move on after one attempt (instead of 600+ failed login
attempts.)
Is there a way to block someone from an address range BEFORE they even
get to the ssh login prompt? Will the hosts.deny file do this? Could
someone provide an example that would do as I have described?
Thanks.
- Previous message: Romain Kang From:: "Re: sshd delay after failed login"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
