PDA

View Full Version : Limit number of failed logins in one hour?



u2mike
10-30-2004, 04:13 PM
Hey, is it possible to get ProFTPD to limit number of failed login attempts in one hour. Every day when I go over my logs there are hundreds of attempts from varios IP addressed. Normally I will block these IP ranges from accessing ports 21,22, and 2222. But it would still be nice to have an extra layer of protection.

So far noone has even used a name that exists but it still annoys me.

nobaloney
10-30-2004, 06:20 PM
I don't think you can; proftpd writes logs, but I don't think it reads them and it doesn't keep prior login info in memory.

You can do it a properly written firewall; we recommend APF (Advanced Policy Firewall); you should be able to find info about it on these forums.

Jeff

u2mike
10-30-2004, 07:11 PM
I allready use APF and block ip's manually based on the daily logs. I was just hoping there would be a way to automate the security a little more.

nobaloney
11-01-2004, 10:17 AM
We do automate it using APF, though I won't have time to research exactly how we did it until after I return from ISP.CON.

Jeff