Support Home Communities Home   Search Today's Posts Mark Forums Read

 
 
LinkBack Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1  
Old 08-Oct-2009, 11:30 AM
Chris
NNTP User
  
Posts: n/a
Default Defending against ssh attacks
Hi all: We proxy ssh traffic to one of our SLES servers for
ssh tunneling purposes. We have disabled password
authentication and rely solely on rsa key authentication.
However, we still have a flood of ssh password guessing
traffic which I want to block.

One option I am looking at is to abandon the ssh proxy and
route all ssh traffic directly to the SLES box. Then on the
SLES box config iptables to allow only so many ssh login
attempts per minute per ip address. Alternately iptables
could be setup to permanently block ip addresses after so
many failures.

My question is this: Can a similar technique be employed on
our BM 3.9 server? I really don't want to have to screw
around with multiple firewalls!

Thanks, Chris.


Reply With Quote
 

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT -6. The time now is 09:48 PM.
Contact Us - NOVELL FORUMS - Archive - Privacy Statement - Top

© 2007 Novell, Inc. All Rights Reserved.

Search Engine Friendly URLs by vBSEO 3.3.0 RC2