Someone posted something similar a while back on this italian ML (well, the script is a shell script, so you don't need to read italian): http://www.sikurezza.org/ml/06_05/msg00073.html Moreover, I think the script itself was found somewhere else, and cross-posted there. But it does not use logsurfer, it parses sshd logs itself (with tailf). It may help you, or maybe not :-) Best, Daniele On 7/26/05, Tim Sailer <sailer@private> wrote: > Has anyone developed a logsurfer rule to invoke IPTables > on a Linux box to block the brute force ssh attacks yet? > If so, can you post your work? If not, I'll hack my own and > post it to the list for the archives. > > Tim > > -- > Tim Sailer <sailer@private> > Information and Special Technologies Program > Office of CounterIntelligence > Brookhaven National Laboratory (631) 344-3001 > _______________________________________________ > LogAnalysis mailing list > LogAnalysis@private > http://lists.shmoo.com/mailman/listinfo/loganalysis > _______________________________________________ LogAnalysis mailing list LogAnalysis@private http://lists.shmoo.com/mailman/listinfo/loganalysis
This archive was generated by hypermail 2.1.3 : Wed Jul 27 2005 - 09:20:51 PDT