Please CC jmc AT xisl.com on any reply as I'm not subscribed. We are getting several thousand login tries daily all from the same IP each try. It would be a great help to automatically refuse connections from a given IP after a certain number of failed login attempts. I was thinking of doing that myself but if anyone else is about to do it or has done it please let me know. Thanks. John Collins Xi Software Ltd www.xisl.com
John M Collins wrote:> Please CC jmc AT xisl.com on any reply as I'm not subscribed. > We are getting several thousand login tries daily all from the same IP each > try. > > It would be a great help to automatically refuse connections from a given IP > after a certain number of failed login attempts.Please check the list archives for past discussion on this request. -d
John M Collins wrote:> I did. I checked through the threads for the past year and couldn't see > anything which seemed to address this question.The last one was less than a week ago: http://www.mindrot.org/pipermail/openssh-unix-dev/2005-May/023221.html> I don't think my enquiry was an unreasonable one.I don't think that referring someone to check past history before we answer the same question again is unreasonable. -d
John M Collins wrote:> It might be more reasonable if you provided a search facility. Like I > said, I did look through past history but none of the threads seemed to > mention it. All the article you referred to said as a subject was "SSH > feature request" and you referred that poster to previous discussions > which had obviously eluded him just as much as it eluded me.You must be allergic to google: "openssh login attempt", 1st link and follow the thread.> If it's such a bad idea, why don't you put up on the FAQ list why you > think it's such a bad idea?I.e. we should do the work because you are too lazy to use a search engine.> For my own part it is clear that there are lots of brute force attempts > to break in taking place at them moment and optional features which > might assist seem worth discussing.... and we have. Check the archives. -d