Re: Curious
"You might want to look at fail2ban. It'll dynamically firewall off any IPs that make more than a user-definable number of failed login attempts."
I do that with iptables rules. Unfortunately it doesn't deal well with attackers who hop ports on the same address. Still better than nothing, and I supplement it by dropping large blocks of IP addresses. The worst culprits are on addresses associated with Chinese government networks, despite official denials.
Biting the hand that feeds IT
