On 12/04/2005 11:10 AM, Kaj Wiik wrote:
> Hi!
>
> I installed fail2ban, works well with sarge.
>
> Cheers,
>
> Kaj
I'm another happy fail2ban sarge user. Easy, fast, thorough solution to
the problem of ssh brute force attacks. Search for ssh, and you'll see
hundreds (?) of posts to this list
On Sun, 2005-12-04 at 17:37 +0100, marcel wrote:
> Or you could write an iptables rule for it.
A much better solution. But unfortunately, the machine with the problem
has an ipchains packet filter.
--
Glenn English
[EMAIL PROTECTED]
GPG ID: D0D7FF20
--
To UNSUBSCRIBE, email to [EMAIL PROTEC
On Sun, 2005-12-04 at 08:59 -0700, Glenn English wrote:
> On Sun, 2005-12-04 at 00:55 -0800, Daniel L. Miller wrote:
> > I just happened, for GP, to check my auth.log file on my firewall. I
> > found a lengthy listing that appears to be a dictionary attack
> > against
> > me. Can someone tell m
On Sun, Dec 04, 2005 at 08:59:49AM -0700, Glenn English wrote:
> I got so many of them, though, that my log filled the partition. So I
> wrote a little shell script that checks for this frequently, and blocks
> the naughty IP(s) for a few days.
How about sharing it ?
:-)
Joe
--
To UNSUBSCR
Hi!
I installed fail2ban, works well with sarge.
Cheers,
Kaj
On Sun, 2005-12-04 at 00:55 -0800, Daniel L. Miller wrote:
> I just happened, for GP, to check my auth.log file on my firewall. I
> found a lengthy listing that appears to be a dictionary attack
> against
> me. Can someone tell me what I'm dealing with here?
Like someone else said, nothing spe
On Sunday 04 Dec 2005 08:55, Daniel L. Miller wrote:
> I just happened, for GP, to check my auth.log file on my firewall. I
> found a lengthy listing that appears to be a dictionary attack against
> me. Can someone tell me what I'm dealing with here?
>
> My firewall is Debian GNU/Linux 2.6 SID, w
Daniel L. Miller:
>
> I just happened, for GP, to check my auth.log file on my firewall. I
> found a lengthy listing that appears to be a dictionary attack against
> me. Can someone tell me what I'm dealing with here?
Some kind of dictionary attack. :) They are around for at least a year
now.
On Sun, 04 Dec 2005 09:55:20 +0100, Daniel L. Miller <[EMAIL PROTECTED]>
wrote:
I just happened, for GP, to check my auth.log file on my firewall. I
found a lengthy listing that appears to be a dictionary attack against
me. Can someone tell me what I'm dealing with here?
My firewall is
I just happened, for GP, to check my auth.log file on my firewall. I
found a lengthy listing that appears to be a dictionary attack against
me. Can someone tell me what I'm dealing with here?
My firewall is Debian GNU/Linux 2.6 SID, with a firehol generated
iptables fireall, OpenVPN, and ssh
10 matches
Mail list logo
