Blocking SSH Brute Force attempts using iptables

Posted on January 12, 2008 by Chris

After my recent break in I have looked into ways of protecting SSH and my server resources. I employ fail2ban on my main server, it has the resources to run such a programme – my Linksys NSLU2′s however do not. The solution is to use iptables to limit the number of connections any host can make in a given time frame. I wrote up a quick how to on this over at my wiki. Enjoy.

About Chris

Twenty-something year old computer science graduate living in the West Midlands, working as a PHP software developer for a local company.
This entry was posted in Debian, Internet, Linux, Security, Ubuntu and tagged , , , , . Bookmark the permalink.

One Response to Blocking SSH Brute Force attempts using iptables

  1. ALeX says:
    June 13, 2008 at 8:27 am

    Another possible solution is use iptables to count new connection.
    You can see an exemple of iptables comand here:
    http://www.logocomune.eu/blog/2008/06/nslu2debian-brute-force-attach-ssh.php

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>