ACCEPT tcp -- anywhere anywhere tcp dpt:ssh limit: up to 1/min burst 2 mode srci... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Hello71 on July 15, 2013 \| parent \| context \| favorite \| on: SSH Brute Force – The 10 Year Old Attack That Stil... `ACCEPT tcp -- anywhere anywhere tcp dpt:ssh limit: up to 1/min burst 2 mode srcip` Have fun brute forcing at 1 connection per minute. (Oh, and PasswordAuthentication is off too.)

tacoman on July 15, 2013 | [–]

Can you paste the config line that adds this to your iptables?

Hello71 on July 15, 2013 | | [–]

  -A PORTS -p tcp -m tcp --dport 22 -m hashlimit --hashlimit-upto 1/min --hashlimit-burst 2 --hashlimit-mode srcip --hashlimit-name ip4-ssh-brute -j ACCEPT

bentcorner on July 15, 2013 | [–]

Is this per IP or for all incoming connections?

Hello71 on July 15, 2013 | [–]

"srcip"

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact