Yes, it's complicate now,because the code use the service name without
limits. In other way gufw must use the 'standard' command in the preconf
and the user can create anothers configurations :-) but we're thinking on
an intro/wizzard and could be good idea recommend use limit with ssh :-)
I must tell you that this issue will be solved for 13.04 ;-)
Cheers and thanks for the ideas!!! :-D
On Jan 5, 2012 9:17 PM, "Lars Noodén" <email address hidden> wrote:
> I'm not sure if this is making things too complicated, but one of the
> problems with SSH is that bots start to hammer it from the moment it is
> turned on. I use rate limiting and have seen others mention it on the
> Ubuntu Forums. Maybe it can be part of the settings for SFTP/SSH.
>
> e.g.
>
> ip6tables -I INPUT -p TCP --dport 22 -m state --state NEW -m limit
> --limit 4/minute --limit-burst 5 -j ACCEPT
> iptables -I INPUT -p TCP --dport 22 -m state --state NEW -m limit
> --limit 4/minute --limit-burst 5 -j ACCEPT
>
> --
> You received this bug notification because you are subscribed to gui-ufw
> in Ubuntu.
> https://bugs.launchpad.net/bugs/911383
>
> Title:
> UFW missing pre-configured HTTPS option
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/gui-ufw/+bug/911383/+subscriptions
>
Yes, it's complicate now,because the code use the service name without
limits. In other way gufw must use the 'standard' command in the preconf
and the user can create anothers configurations :-) but we're thinking on
an intro/wizzard and could be good idea recommend use limit with ssh :-)
I must tell you that this issue will be solved for 13.04 ;-)
Cheers and thanks for the ideas!!! :-D
On Jan 5, 2012 9:17 PM, "Lars Noodén" <email address hidden> wrote:
> I'm not sure if this is making things too complicated, but one of the /bugs.launchpad .net/bugs/ 911383 /bugs.launchpad .net/gui- ufw/+bug/ 911383/ +subscriptions
> problems with SSH is that bots start to hammer it from the moment it is
> turned on. I use rate limiting and have seen others mention it on the
> Ubuntu Forums. Maybe it can be part of the settings for SFTP/SSH.
>
> e.g.
>
> ip6tables -I INPUT -p TCP --dport 22 -m state --state NEW -m limit
> --limit 4/minute --limit-burst 5 -j ACCEPT
> iptables -I INPUT -p TCP --dport 22 -m state --state NEW -m limit
> --limit 4/minute --limit-burst 5 -j ACCEPT
>
> --
> You received this bug notification because you are subscribed to gui-ufw
> in Ubuntu.
> https:/
>
> Title:
> UFW missing pre-configured HTTPS option
>
> To manage notifications about this bug go to:
> https:/
>