Re: Securing sshd against unwanted login attempts

From: Erik Norgaard (none@norgaard--locolomo.org.lh.bsd-dk.dk)
Date: Tue 02 Nov 2004 - 19:22:57 CET

Next message: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
Previous message: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
In reply to: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
Next in thread: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
Reply: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Date: Tue, 02 Nov 2004 19:22:57 +0100
From: Erik Norgaard <none@norgaard--locolomo.org.lh.bsd-dk.dk>
To: bsd-dk@bsd-dk.dk
Subject: Re: Securing sshd against unwanted login attempts

Michael Knudsen wrote:

> Jeg vil gerne have en kopi af dette, evt. off-list. Genererer det
> ipfw-regler? I saa fald vil jeg da gerne bruge lidt tid paa at lave en
> pf-udgave.

her: www.locolomo.org/src/ip-delegated.pl

./ip-delegated.pl <CC> <CC> ...

hvor <CC> er en tobogstavs landekode (uppercase). (se evt. 'perldoc
ip-delegated.pl')

Der er ikke noget sort magi, det parser bare listerne igennem fra de
regionale registries og spytter regler ud for de lande du vil have. Det
væsentligste er at addresse rummene lægges sammen så du får færrest
muligt antal regler.

Ret scriptet så det spytter resultatet ud som du vil have det, jeg har
brugt det til at få blokkeret for spam fra Korea og lave ssh regler til
ip-filter.

For at bruge scriptet skal du lige hente de her lister:

  http://ftp.apnic.net/stats/apnic/delegated-apnic-latest
  ftp://ftp.arin.net/pub/stats/arin/delegated-arin-latest
  ftp://ftp.lacnic.net/pub/stats/lacnic/delegated-lacnic-latest
  ftp://ftp.ripe.net/ripe/stats/delegated-ripencc-latest

og scriptet bruger Net::CIDR

Mvh Erik

-- 
Ph: +34.666334818                                  web: www.locolomo.org
S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt
Subject ID:  A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9
Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2

Next message: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
Previous message: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
In reply to: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
Next in thread: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
Reply: Michael Knudsen: "Re: Securing sshd against unwanted login attempts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:46 CET