Hello Daryl!
Hi, Mike...
I set up a script that blacklists any IP that connects to a port
more than 5 times in a couple minutes. iptables blocks the
address for a few hours. If it continues trying after 3
temporary blocks, the IP is permanently blocked.
basically, it is a modified version of CSF (ConfigServer
Firewall) which is a perl wrapper and login failure daemon for
web-hosting providers.
Good deal.
Too bad Sysops have to implement such measures.
Hello Daryl!
It's pretty common for any internet-connected machine to use something lik
this. SSH ports get hammered by bots looking to brute-force their way into MM>system and have for the last 10+ years.
I have some machines set up as "honeypots" where, if something like this hit MM>them, the entire cluster blocks that IP address. I've definitely seen an upt MM>in connections to port 23 lately though. I have no idea why IOT devices insi MM>on using telnet, as implementing ssh is simple.
Sysop: | Nelgin |
---|---|
Location: | Plano, TX |
Users: | 510 |
Nodes: | 10 (2 / 8) |
Uptime: | 134:30:33 |
Calls: | 8,201 |
Calls today: | 3 |
Files: | 15,446 |
Messages: | 913,912 |