I also limit port 22 or whatever to, say, 3 tries a minute (iptables) just so yo... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

gtani on Jan 1, 2010 | parent | context | favorite | on: Ask HN: Do you worry about ssh brute force attacks...

I also limit port 22 or whatever to, say, 3 tries a minute (iptables) just so you don't look like low-hanging fruit

something like this

http://jonsbraindump.blogspot.com/2007/09/iptables-rules-to-...

gtani on Jan 1, 2010 [–]

i just saw this on HN, a SSH blacklist

http://isc.sans.org/diary.html?storyid=7855

scumola on Jan 1, 2010 | [–]

I use the ssh blacklist utility and it works pretty well. Although it opens up the IPs after 4 days (default), which I don't really liked, so I pumped that up to 14 days which seems to work nicely.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact