Abhijeet wrote: > Hello Everyone, > This is Abhijeet, I had recently cobfigured a proxy server > in quiet a hurry mode, so couldn't comlpete the ACL forr security , > now there are people trying to open ssh session from Class A ips. I
You can use sshban to block offending IP. Also u can put the script kitties IPs in your /etc/hosts.deny. If they are using multiple spoofed IPs, consider blocking all traffic to port 22 and if it is severely hammering your network, contact your ISP immediately. If you work for ISP, contact backbone. Also see this post by Surmandal - http://groups.google.com/group/libnepal/browse_thread/thread/7bb794312ae6c638 > think they are hosting their ftp sites or webpages there, and our > proxy isn't seerving the LAN http request. CAn anyone come up with the It could be some exploits. But not sure without more knowledge. Couldn't you dig up your apache logs and see what's going on? > configuration to be implemented in the squid.conf file. I had used > http access allow to internal LAN and DEny to rest. So far as access goes it is something like this for http access - * allow local:any->net:80 * deny net:any->local:any * deny all<->all Also why do you use squid as a firewall? I would prefer Check Point(if I had $$$$) or use iptables/packetfilter (floss). > > Also one of the Linux PC mount point was wronlgy mounted becoz of > which it isn't restarting and giving the error message form the /etc/ > fstab. the repair mode is in # mode and isn't allowing VIM text Use GNU nano if you find vi/vim hard. Nano is intuitive and very easy to use. > editor to edit the /etc/fstab file to retstart it. I have important > fies there, so can't format or repartition it. Are there any other > ways to restore the the computer files and take out the mount point > from the fstab file. Need help pretty quickly. Insert LiveCD if you have one, mount the hard disk partition and follow Subir dai's advice (mount it r/w). Then edit the /etc/fstab as you wish. HTH. -- thanks, nepBabu.cx ---- Q: What's a light-year? A: One-third less calories than a regular year. --~--~---------~--~----~------------~-------~--~----~ FOSS Nepal mailing list: [email protected] http://groups.google.com/group/foss-nepal To unsubscribe, e-mail: [EMAIL PROTECTED] Community website: http://www.fossnepal.org/ -~----------~----~----~----~------~----~------~--~---
