sshutout - Daemon to Stop SSH Dictionary Attacks

Property Value
Distribution Mageia 6.1
Repository Mageia Core i586
Package name sshutout
Package version 1.0.6
Package release 9.mga6
Package architecture i586
Package type rpm
Installed size 75.24 KB
Download size 39.19 KB
Official Mirror
This is a Linux daemon, that periodically monitors log
files looking for multiple failed login attempts via the Secure Shell
daemon (sshd, or optionally, sshd2). The daemon is meant to mitigate
what are commonly known as "dictionary attacks," i.e. scripted brute
force attacks that use lists of user ID's and passwords to effect
unauthorized intrusions. Typically such attacks fill the system logs
with hundreds or even thousands of log entries for the failed login
attempts. Aside from the nuisance of wasted space, wasted bandwidth,
and reduced signal to noise ratio in the logs, the attacks can pose a
real danger to systems with weak ID and password combinations.
The sshutout daemon blunts such attacks by creating firewall rules to
block individual offenders from accessing the system. These rules are
created when an attack signature is detected, and after a configurable
expiry interval has elapsed, the rules are deleted.
While sshutout can help reduce the severity and impact of dictionary
attacks, it is by no means a substitute for a good password policy. A
password policy is the front line of defense against intrusion and
should be given careful consideration. The sshutout daemon is merely
one small tool intended to help reduce log clutter and diminish the
incentive to mount dictionary attacks.


Package Version Architecture Repository
sshutout-1.0.6-9.mga6.x86_64.rpm 1.0.6 x86_64 Mageia Core
sshutout - - -


Name Value
config(sshutout) == 1.0.6-9.mga6
iptables - - - - - - -
openssh-server -
rpm-helper -
syslog-daemon -


Name Value
config(sshutout) == 1.0.6-9.mga6
sshutout == 1.0.6-9.mga6
sshutout(x86-32) == 1.0.6-9.mga6


Type URL
Binary Package sshutout-1.0.6-9.mga6.i586.rpm
Source Package sshutout-1.0.6-9.mga6.src.rpm

Install Howto

  1. Enable Mageia Core repository on Install and Remove Software
  2. Update packages list:
    # urpmi.update -a
  3. Install sshutout rpm package:
    # urpmi sshutout




2016-02-17 - umeabot <umeabot> 1.0.6-9.mga6
+ Revision: 962928
- Mageia 6 Mass Rebuild
2015-10-23 - tv <tv> 1.0.6-8.mga6
+ Revision: 894638
- do not strip thus fixing debuginfo
2014-10-15 - umeabot <umeabot> 1.0.6-7.mga5
+ Revision: 749579
- Second Mageia 5 Mass Rebuild
2014-10-13 - eatdirt <eatdirt> 1.0.6-6.mga5
+ Revision: 738470
- Migration to native systemd service
2014-09-16 - umeabot <umeabot> 1.0.6-5.mga5
+ Revision: 689324
- Mageia 5 Mass Rebuild
2013-10-20 - umeabot <umeabot> 1.0.6-4.mga4
+ Revision: 536814
- Mageia 4 Mass Rebuild
2013-09-24 - eatdirt <eatdirt> 1.0.6-3.mga4
+ Revision: 485692
- Added missing BR to syslog-daemon

See Also

Package Description
sslext-1.2-11.mga6.noarch.rpm Struts SSL Switching Extension
sslext-javadoc-1.2-11.mga6.noarch.rpm Javadoc for sslext
sslh-1.17-3.mga6.i586.rpm ssl/ssh multiplexer
sslscan-1.11.8-1.mga6.i586.rpm Fast SSL Scanner
sslsniff-0.8-18.mga6.i586.rpm SSL/TLS man-in-the-middle attack tool
sslsplit-0.4.8-6.mga6.i586.rpm Transparent and scalable SSL/TLS interception
sslstrip-0.9-10.mga6.noarch.rpm Tool that provides a demonstration of HTTPS stripping attacks
ssmtp-2.64-17.mga6.i586.rpm A minimal mail-transfer agent which forwards mail to an SMTP server
sssd-1.13.4-9.mga6.i586.rpm System Security Services Daemon
sssd-ad-1.13.4-9.mga6.i586.rpm The AD back end of the SSSD
sssd-client-1.13.4-9.mga6.i586.rpm SSSD Client libraries for NSS and PAM
sssd-common-1.13.4-9.mga6.i586.rpm Common files for the SSSD
sssd-common-pac-1.13.4-9.mga6.i586.rpm Common files needed for supporting PAC processing
sssd-dbus-1.13.4-9.mga6.i586.rpm The D-Bus responder of the SSSD
sssd-ipa-1.13.4-9.mga6.i586.rpm The IPA back end of the SSSD