Blacklisting DOS IPs
I'm currently using a pfSense box as a gateway and I was recently victim of a DNS DOS attack. That made me think how I could blacklist those IPs automatically. I looked through the pf documentation and the thing that seemed more like it was the max-src-conn-rate option, but then I realized that it's useless with UDP when some hosts send you vast amounts of packets. I'm thinking about making an script using awk and pftop output to watch for states that have more than 1Mb of traffic (regular DNS queries aren't that big) and put those hosts in a table for blocking. My question is if it is there some other more efficient solution for this problem. Thanks in advance -- Saludos de Mauricio López-Quintana Conesa Administrador de Redes Dirección de Patrimonio Oficina del Historiador ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to restore a lost root password...
On Sun, Oct 26, 2008 at 4:08 PM, Daniel Bye [EMAIL PROTECTED] wrote: On Sun, Oct 26, 2008 at 09:18:25PM +0100, Rada alive wrote: I have seen a How to about this but I have a problem, i set the console to insecure, so when I try to do the step of the how to i get a message to input the root password or Ctrl-D to enter in multiuser mode. What happened to just booting into single-user mode and issuing passwd? The OP made a point of letting us know that he has marked his console `insecure' in /etc/ttys. In order to even get a shell in single user, he needs the root password. As far as I know, from my previous Linux experience, you just need a LiveCD in order to boot the PC, mount the / partition, edit /etc/passwd or /etc/shadow and change the hash for one that correspond to one we know. Perhaps you can make it in every UNIX. -- Mauricio López ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Low bandwidth suggestions
I'm starting my first steps in FreeBSD, with some experience in Debian GNU/Linux. I also live in Cuba, a third world country with very low bandwidth and I'm very interested in having access to the ported software available for FreeBSD. For now I managed to get the 3 CDs of the 7.0 RELEASE and install it. My question is: what would you recommend to someone who wants to have the software available offline and perhaps update it monthly? Can I download and burn in DVDs the entire ports and package collection? Regards Mauricio López ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
