sshdfilter: initial commit

author: Alan Mizrahi <alan+crux@mizrahi.com.ve> 2007-01-06 10:21:39 -0400
committer: Alan Mizrahi <alan+crux@mizrahi.com.ve> 2007-01-06 10:21:39 -0400
commit: 7204acfe6b8c948c2af9c021d512b6330be21251 (patch)
tree: af39ce6d10368bec9e76d425feff08844c5fb29a /sshdfilter/README
parent: 2b419197832ebd919ddac17179693220682dad02 (diff)
download: contrib-7204acfe6b8c948c2af9c021d512b6330be21251.tar.gz
contrib-7204acfe6b8c948c2af9c021d512b6330be21251.tar.xz
1 files changed, 20 insertions, 0 deletions
diff --git a/sshdfilter/README b/sshdfilter/README
new file mode 100644
index 000000000..52804ff71
--- /dev/null
+++ b/sshdfilter/README
@@ -0,0 +1,20 @@
+REQUIREMENTS
+
+PRE-INSTALL
+
+	* This port depends on having netfilter enabled in the kernel
+
+POST-INSTALL
+
+	* Add the SSHD chain to your firewall setup:
+	iptables -N SSHD
+
+	* Add a jump to SSHD rule:
+	iptables -A INPUT -p tcp -m tcp --dport 22 -j SSHD
+
+	* Store your new iptables rules somewhere persistent
+
+	* To start sshd with filtering, use /etc/rc.d/sshdfilter instead of
+	  /etc/rc.d/sshd
+
+PRECAUTION
author	Alan Mizrahi <alan+crux@mizrahi.com.ve>	2007-01-06 10:21:39 -0400
committer	Alan Mizrahi <alan+crux@mizrahi.com.ve>	2007-01-06 10:21:39 -0400
commit	7204acfe6b8c948c2af9c021d512b6330be21251 (patch)
tree	af39ce6d10368bec9e76d425feff08844c5fb29a /sshdfilter/README
parent	2b419197832ebd919ddac17179693220682dad02 (diff)
download	contrib-7204acfe6b8c948c2af9c021d512b6330be21251.tar.gz contrib-7204acfe6b8c948c2af9c021d512b6330be21251.tar.xz