Quoting Carlos E. R. (robin.listas@telefonica.net):
On 2010-06-10 15:45, Otto Rodusek wrote:
Ok, tried all the suggestions and cleaned out SuSEfirewall2 as per above but I still get the following in my logs:
Jun 10 03:08:28 bunyip sshd[7626]: User root from 218.8.82.99 not allowed because not listed in AllowUsers Jun 10 03:08:29 bunyip sshd[7629]: User root from 218.8.82.99 not allowed because not listed in AllowUsers Jun 10 03:08:30 bunyip sshd[7631]: User root from 218.8.82.99 not allowed because not listed in AllowUsers
Obviously the line FW_SERVICES_ACCEPT_EXT="0/0,tcp,22,,hitcount=5,blockseconds=60,recentname=ssh" isn't doing what it's supposed to do? Any other ideas I can try?
You have to increase "blockseconds" to more than 60 seconds. You have one attempt per minute, so they avoid the rule...
Hm, I'd read that as one per second, not one per minute... Susan -- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org