removing a Linux Keylogger
dsr at tao.merseine.nu
dsr at tao.merseine.nu
Wed Jul 27 10:17:13 EDT 2005
On Wed, Jul 27, 2005 at 09:52:33AM -0400, Bill Horne wrote:
> dsr at tao.merseine.nu wrote:
>
> >On Mon, Jul 25, 2005 at 01:00:50PM -0400, Grant M. wrote:
> >
> >Second, you want to run a firewall on the machine that rejects
> >excessive connection attempts. This iptables fragment:
> >
> >iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent
> >\
> >--set
> >iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent
> >\
> >--update --seconds 60 --hitcount 4 -j DROP
> >
> >will generally prevent scriptkiddies from brute-forcing your SSH
> >accounts, by limiting connection attempts to 3 per minute per IP
> >address.
> >
> >
> >
> I'm getting errors on these commands: "Unknown arg --set"
>
> I have iptables v 1.2.6a running on Debian with the 2.4.18 kernel.
>
> What version of iptables do I need?
I'm using 1.2.11 on Debian stable with kernel 2.6.8-2-386.
-dsr-
More information about the Discuss
mailing list