[lug] SSH Probing Solution using IPTables

Sean Reifschneider jafo at tummy.com
Mon Sep 26 16:54:17 MDT 2005


On Wed, Sep 14, 2005 at 10:26:29AM -0600, George Sexton wrote:
>minutes for OpenSSH to time out on the connection attempt. I suppose hackers
>could adjust this value. It still is going to tie up the script for some
>period of time.

There is a tarpit module for iptables that will do the same without
consuming hardly any system resources.

Sean
-- 
 The direct use of force is such a poor solution to any problem, it is
 generally employed only by small children and large nations.  -- D.  Friedman
Sean Reifschneider, Member of Technical Staff <jafo at tummy.com>
tummy.com, ltd. - Linux Consulting since 1995: Ask me about High Availability




More information about the LUG mailing list