[CentOS] SSH attacks from china

Fri Jul 24 11:08:37 UTC 2009
Lucian@lastdot.org <lucian at lastdot.org>

On Fri, Jul 24, 2009 at 12:04 PM, Andreas Rehmer<rehmer at teltarif.de> wrote:
> Hi
> i am using the following way to dissallow ssh connects without having the
> Problem of specific IPs or something else.
> Before you get access to the machine you must visit a webpage protected by
> httpauth. This start a small script that put the Remote Adress into a
> list. Only if your ip is on the list and not older than 5 min. you gain
> access via ssh.
> For this i used only iptables the Skript and apache.
> The only Problem is when the httpd hangs on.
> If you want more Information write me.
> Reg. Rehmer
> rehmer at teltarif.de
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos

I banned all China and Korea in my gateway :) (not for all ports, only
for ssh & ftp).