[OT] SSH throttle - security

To: port-macppc%NetBSD.org@localhost
Subject: [OT] SSH throttle - security
From: Donald Lee <MacPPC2%caution.icompute.com@localhost>
Date: Mon, 26 Jan 2009 15:41:08 -0600

[sorry for the OT]

I have an ssh annoyance - my logs are FULL of cracking attempts.  This is
an externally visible server, so I can't simply shut off access.  They are
trying lots of random accounts, and I'm not worried that they'll get in,
but it's a pain, both because it generates huge logfiles, and also
because it burns non-trivial CPU.

Does anyone know of an option/method to "throttle" incoming SSH requests.
I would be more than happy to limit said requests to one every N seonds,
where N is in the range of 5-10 (or more?)

I don't see anything in the docs or on the web that will allow me to
do this.  I'm not anxious to write proxy software to do this. :-<

I figure this might be of general interest to anyone with an exposed
server.

Thanks,

-dgl-

Follow-Ups:
- Re: [OT] SSH throttle - security
  - From: Bruce O'Neel
- Re: [OT] SSH throttle - security
  - From: Daniel Eggert
- Re: [OT] SSH throttle - security
  - From: der Mouse
- Re: [OT] SSH throttle - security
  - From: John Klos

References:
- Re: MacPPC serial ports in 4.0.1 - not quite
  - From: Izumi Tsutsui

Prev by Date: Package binaries for NetBSD/macppc 3.1_STABLE / pkgsrc-2008Q4
Next by Date: Re: [OT] SSH throttle - security
Previous by Thread: Re: MacPPC serial ports in 4.0.1 - not quite
Next by Thread: Re: [OT] SSH throttle - security
Indexes:

Home | Main Index | Thread Index | Old Index