Re: Attacks on ssh port
Willem Jan Withagen <wjw@withagen.nl> probably said:
> I also have portsentry in a rather sensitive mode doing exactly the same
> thing.
> Trigger one of the "backdoor" ports, and you're out of my game.
The general problm with this type of reactive filtering is that if
someone can spoof the source addresses effectively or cause a connection
from a legitimate host you've just DoSed yourself...
Personally I only allow ssh from known legitimate sources and block the
rest so the "noise" is in a completely different list.
P.
--
pir
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)
完整討論串 (本文為第 16 之 29 篇):