Coredump

Work, play, and everything in-between.

Archive for the ‘iptables’ tag

Using hashlimit to foil SSH bruteforce attempts

without comments

Add this to the iptables ruleset:

iptables -A INPUT -m hashlimit -m tcp -p tcp --dport 22 --hashlimit 1/min --hashlimit-mode srcip --hashlimit-name ssh -m state --state NEW -j ACCEPT

The rule limits one connection to the SSH port from one IP address per minute.

For more information, man iptables and iptables -m hashlimit --help.

Reference: https://www.redhat.com/archives/fedora-test-list/2005-August/msg00061.html

Written by Ian Dexter

January 4th, 2006 at 9:12 am

Posted in Work

Tagged with iptables, linux, security, ssh

Subscribe via RSS or email.

About

Ian Dexter here, a Unix janitor, web plumber and open source pimp. Learn more. Comments, suggestions, little dirty secrets? Fire away.

Recently

Tags

agriculture blogging books cli cms cool design family feeds flickr fun gadget geek gmail google howto humor ict4d internet javascript julian linux ltsp microsoft mobile network news opensource personal pfi programming reading research rss security status tech tools toys ubuntu watching web wireless wordpress yahoo

Archives

Creative Commons License

This work is licensed under a Creative Commons Attribution-Noncommercial 3.0 Unported License.