On Sat, 28 Jan 2006 at 12:17PM -0600, Mike Hicks wrote: > I finally got around to making an automatic blackhole setup to stop > the bots that try to SSH into my box all the time. I'm sure people > have done this before, but I couldn't find many decent references > googling around. So, I figured I'd explain what I did so others can > waste less time. My solution to that problem was to use iptables and a port knocking daemon. If you're not coming from the U of M, iptables drops all port 22 packets, unless you knock first. It's a very simple setup, and easy to use. Dan -- Ceci n'est pas une .signature. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20060128/d3a815fc/attachment-0003.pgp