[LUNI] Stupid Firewall Trick

[Rick Munday]

> I've also found this to be quite useful:
> 
> $IPTABLES -I INPUT -p tcp --dport 22 -m state \
>   --state NEW -m recent --set
> $IPTABLES -I INPUT -p tcp --dport 22 -m state \
>   --state NEW -m recent --update --seconds 60 \
>   --hitcount 4 -j DROP
> 
> That limit's the number of connections to 4 in 60
> seconds.  They seem to give up rather quickly with
> that.

VERY CLEVER!