[CentOS] Crashing Nameservers
Jim Perrin
jperrin at gmail.com
Sat Dec 31 01:22:28 UTC 2005
> Seems I'm experiencing a DoS against vsftp login. Anybody got a good way
> to limit the number of failed login attempts by one IP address?
>
While it's not specific against the one ip address, you can use the
--limit option of iptables to restrict ftp connection attempts to a
max set rate.
For example: --limit 5/minute would slow things down considerably.
There's also --limit-burst and a couple other options that would help
out.
--
Jim Perrin
System Architect - UIT
Ft Gordon & US Army Signal Center
More information about the CentOS
mailing list