31 Dec
2005
31 Dec
'05
1:22 a.m.
Seems I'm experiencing a DoS against vsftp login. Anybody got a good way to limit the number of failed login attempts by one IP address?
While it's not specific against the one ip address, you can use the --limit option of iptables to restrict ftp connection attempts to a max set rate.
For example: --limit 5/minute would slow things down considerably. There's also --limit-burst and a couple other options that would help out.
-- Jim Perrin System Architect - UIT Ft Gordon & US Army Signal Center