I’ve had the pleasure of my first experience of a serious DDos attack. I’ve implemented this script, which is a pretty good way of adding iptables rules based on a number of patterns matched in /var/log/secure. I’ve now got this cronned and running every minute, which will hopefully do the job. we will see. There is a danger of getting yourself blacklisted if you get your password wrong, so use with care!