Sunday, February 19, 2006

SSH DenyHosts

Awhile ago, I had a discussion with someone concerning the possible responses to the brute force attacks occurring against SSH servers. Of course, because the attacks involved automated discovery, the obvious answer was "move the port". As this apparently wasn't an option, the discussion involved tcpwrappers and iptables. Here is an example of a TCPWrappers-like approach.