FORUM DARKERS

Segurança & Hacking => Segurança => Topic started by: insanity on 27 de July , 2006, 05:58:12 PM

Title: Regras Iptables para Bloquear ataques Brute Force no SSH
Post by: insanity on 27 de July , 2006, 05:58:12 PM

Escrito by mairon lima mendes

Code Select Expand

iptables -A INPUT -p tcp --syn --dport 22 -m recent --name sshattack
--set

iptables -A INPUT -p tcp --dport 22 --syn -m recent --name sshattack
--rcheck --seconds 60 --hitcount 3 -j LOG --log-prefix 'SSH REJECT: '

iptables -A INPUT -p tcp --dport 22 --syn -m recent --name sshattack
--rcheck --seconds 60 --hitcount 3 -j REJECT --reject-with tcp-reset

iptables -A FORWARD -p tcp --syn --dport 22 -m recent --name
sshattack
--set

iptables -A FORWARD -p tcp --dport 22 --syn -m recent --name
sshattack
--rcheck --seconds 60 --hitcount 3 -j LOG --log-prefix 'SSH REJECT: '

iptables -A FORWARD -p tcp --dport 22 --syn -m recent --name
sshattack
--rcheck --seconds 60 --hitcount 3 -j REJECT --reject-with tcp-reset

ate mais

Title: Re: Regras Iptables para Bloquear ataques Brute Force no SSH
Post by: HadeS on 28 de July , 2006, 12:49:03 AM

Muito bom insanity, é sempre bom incrementar o IPTables.

HadeS