ahh haven't really played that much with tarpit, thansk for clearing that up :-)<br><br><div><span class="gmail_quote">On 3/8/06, <b class="gmail_sendername">Dave Jones</b> &lt;<a href="mailto:Dave.Jones@xs4all.nl">Dave.Jones@xs4all.nl
</a>&gt; wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Hi Andrew,<br><br>Andrew Frink wrote on 03/08/06 14:57:<br>&gt; You could also just add the &quot;extensions&quot; USE flag to iptables and that
<br>&gt; should give you tarpit support<br><br>&gt; On 3/7/06, *Dave Jones* &lt; <a href="mailto:Dave.Jones@xs4all.nl">Dave.Jones@xs4all.nl</a><br>&gt; &lt;mailto:<a href="mailto:Dave.Jones@xs4all.nl">Dave.Jones@xs4all.nl
</a>&gt;&gt; wrote:<br><br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; Erik Westenbroek wrote on 03/07/06 04:18:<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; &gt; I am attempting create a tarpit to protect against SSH Brute force<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; &gt; attempts.&nbsp;&nbsp;I tried this:<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; --snip--
<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; &gt; iptables -A SSH_Brute_Force -p tcp -j TARPIT<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; &gt; After I type the last command typed I got this error message:<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; &gt; iptables: No chain/target/match by that name<br><br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; The standard Gentoo-sources kernel does not include the TARPIT target.
<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; You need to pick up an updated kernel iptables source from<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp; <a href="http://netfilter.org">netfilter.org</a> &lt;<a href="http://netfilter.org">http://netfilter.org</a>&gt;<br><br>&nbsp;&nbsp; --- snip---<br>
<br>Simply adding &quot;extensions&quot; to your /etc/make.conf USE is not enough.<br><br>Without the iptables kernel source updates you still won't have the<br>TARPIT target, even though the iptables package will have support for
<br>support it in its library routines.<br><br>Cheers, Dave<br>--<br><a href="mailto:gentoo-user@gentoo.org">gentoo-user@gentoo.org</a> mailing list<br><br></blockquote></div><br>