site Search:


Home Reviews Tools Forums FAQs Find Service ISP News Maps About  
 
    All Forums Hot Topics Gallery






how-to block ads

  
Forums >

OS and Software > All Things Unix > How do I secure ssh to only allow 3login attempts?

Search Topic:
 Share Topic
Posting?
Post a:
Post a:
Links: ·Forum FAQ ·Attitude Adjustment ·Linux docs ·DistroWatch ·OPLM ·FreeBSD Handbook
AuthorAll Replies


yock
TFTC
Premium
join:2000-11-21
Miamisburg, OH
kudos:3

reply to nklb

Re: How do I secure ssh to only allow 3login attempts?

As has been said, you would need to configure Pam to block an IP range after a specific number of failed attempts. Why not be more proactive about it and limit hat IP ranges even have access to the SSH daemon? This could easily be accomplished with either IPTables or TCP Wrappers.

To get the effect you're looking for at the top of this thread, you would have to lockout the accounts in question after a number of failed login attempts. This would necessitate that the accounts actually exist, and could potentially cause problems elsewhere. Ensure that accounts that don't require a shell are set WITHOUT a shell in /etc/passwd and any accounts that do need to be interactive are set with either strong passwords or (even better) PKA.
--
Statistical correlation need not imply causation.
Technical Nirvana
to forum · permalink · 2005-02-07 10:20:58 ·
Forums > OS and Software > All Things Unix

Sunday, 27-May 13:01:41 Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo
over 12.5 years online © 1999-2012 dslreports.com.
Most commented news this week
Hot Topics