-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The Sunday 2005-12-11 at 15:46 -0800, Scott Leighton wrote:
Yes, the script kiddies are a nuisance. I use login_sentry to send them on their way (it adds their IP address to hosts.deny).
That list could grow very large. Also, if those attacks come from dynamic ips, you could have a deny line for an IP that has changed owner, and now is an honest person, while the attacker is using a new one you do not have listed yet. I think I read in passing somewhere about an iptables rule to deny temporarily access to a certain IP; the rule is temporary and disappears after some time, freeing resources. But I don't know what is it. - -- Cheers, Carlos Robinson -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Made with pgp4pine 1.76 iD8DBQFDndm7tTMYHG2NR9URApSmAJ0WuUjdVdPVlZM7RdnTys56dsO7qACghFtm QtqC1F5kXDtFZ8apoGySMzY= =fDVs -----END PGP SIGNATURE-----