Note to LEAF users on ssh logins

Simon 'corecode' Schubert corecode at fs.ei.tum.de
Fri Mar 4 06:59:17 PST 2005


On 03.03.2005, at 19:39, Joerg Sonnenberger wrote:
Someone wants to write a nice PF version? It should just add the IP 
to
a table :)
This is a rather neat idea so I plan on extending this excellent 
script
further in the next coming days.

http://pfsense.com/cgi-bin/cvsweb.cgi/tools/sshlockout_pf.c?rev=1.2
Nice. Too (important) requests:
- allow the table name to be specified by command line
- don't use system, use execv or execvp directly
so as we are really enhancing that tool:
- timeout entries after x seconds
- add threshold for failed logins: y in the last z seconds
. .. in case you're bored :)

cheers
  simon
--
/"\
\ /
 \     ASCII Ribbon Campaign
/ \  Against HTML Mail and News
Attachment:
PGP.sig
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pgp00003.pgp
Type: application/octet-stream
Size: 186 bytes
Desc: "Description: This is a digitally signed message part"
URL: <http://lists.dragonflybsd.org/pipermail/users/attachments/20050304/fb6f9d93/attachment-0016.obj>


More information about the Users mailing list