I want to allow sftp from the internet to my ftp server for folks I setup access for, but I hate seeing the millions of attack dictionary attacks making it that far...Is there not a way to block repeated logon attempt thresholds at the firewall and then blacklist the said IP address automatically somehow...?
I have ssh setup pretty securly (secure mode, 3 attempts, etc.) but I'm seeing the same addresses spinning off brute force attacks for hours at a time...
This thread was automatically locked due to age.