Description: sshblack implements autonomous and real-time ssh blacklisting to protect ssh servers. Creates a dynamic database of attackers and is fully configurable by the system administrator. sshblack is not vulnerable to DoS attacks like other automated blacklisting methods.
email (30512) perl (1558) utility (1272) utilities (785) spam (456) example (340) ssh (203) ipsc (146) sniper (132) blacklist (80)
Remember, you can always find us at http://sshblack.com
The sshblack script is a real-time security tool for secure shell (ssh). It monitors *nix log files for suspicious activity and reacts appropriately to aggressive attackers by adding them to a "blacklist" created using various firewalling tools -- such as iptables -- available in most modern versions of Unix and Linux. The blacklist is simply a list of source IP addresses that are prohibited from making ssh connections to the protected host. Once a predetermined amount of time has passed, the offending IP a
See the Notes page for what's new in Version 2.8.1.