I have the whole 59.0.0.0/8 and 61.0.0.0/8 input chain dropped on my core
router...
Chris
- Original Message -
From: Robert West
To: 'WISPA General List'
Sent: Friday, October 01, 2010 4:57 PM
Subject: [WISPA] Brute Force Attack on Mikrotik Gateway
Just had to deal with
On Fri, 2010-10-01 at 22:38 -0400, Josh Luthman wrote:
Compliments of Butch Evans
This script doesn't look like my work. Not sure who it is, but I would
ordinarily comment every rule. If it IS mine (and I have put a lot of
these snippets out there), then I apologize for lack of comments. :-)
On Sat, 2010-10-02 at 12:57 -0400, Josh Luthman wrote:
It doesn't answer anything. You can't configure anything. It screws
up what you have set. Hate it. I would like to see an html copy of
winbox, but that's a dream.
ROS V5 includes webfig, which is winbox in a browser. With a v5
router,
Probably was not one for one but I am quite certain the concept was yours.
On Oct 3, 2010 11:01 PM, Butch Evans but...@butchevans.com wrote:
On Fri, 2010-10-01 at 22:38 -0400, Josh Luthman wrote:
Compliments of Butch Evans
This script doesn't look like my work. Not sure who it is, but I would
On Fri, Oct 01, 2010 at 04:00:05PM -0700, Tom Sharples wrote:
I've often wondered, is it legal for the receipient of this sort
of thing, to retailiate with e.g. ping or curl storms?
No. Flat no. And most of the time, your retaliation would be
against some poor schmuck who simply hasn't kept
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
On Fri, Oct 01, 2010 at 04:00:05PM -0700, Tom Sharples wrote:
I've often wondered, is it legal for the receipient of this sort
of thing, to retailiate with e.g. ping or curl storms?
No. Flat no. And most of the time, your retaliation
[mailto:wireless-boun...@wispa.org] On
Behalf Of Josh Luthman
Sent: Friday, October 01, 2010 10:38 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Compliments of Butch Evans
/ip firewal filt
add action=accept chain=forward comment=drop ssh brute forcers disabled
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
I like it but what if the ip is being masqueraded?
On Fri, Oct 1, 2010 at 7:00 PM, Tom Sharples tsharp...@qorvus.com wrote:
I've often wondered, is it legal for the receipient of this sort of thing, to
retailiate with e.g. ping
Where is that located in the interface?
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Greg Ihnen
Sent: Saturday, October 02, 2010 9:08 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
That script should
: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Tom Sharples
Sent: Saturday, October 02, 2010 3:04 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Most of the attacks we've seen have been from Chinese and eastern European
IPs. I suppose
Luthman
Sent: Friday, October 01, 2010 10:38 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Compliments of Butch Evans
/ip firewal filt
add action=accept chain=forward comment=drop ssh brute forcers
disabled=\
no dst-port=22 protocol=tcp src-address
[mailto:wireless-boun...@wispa.org] On
Behalf Of Josh Luthman
Sent: Friday, October 01, 2010 10:38 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Compliments of Butch Evans
/ip firewal filt
add action=accept chain=forward comment=drop ssh brute forcers
had to but
wasn't comfortable with it at all.
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Josh Luthman
Sent: Saturday, October 02, 2010 11:18 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
The MT webbox
The new web admin in 5.0 looks like a web clone of winbox.
On Oct 2, 2010 11:57 AM, Josh Luthman j...@imaginenetworksllc.com wrote:
It doesn't answer anything. You can't configure anything. It screws up
what you have set. Hate it. I would like to see an html copy of winbox,
but that's a
...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Josh Luthman
Sent: Saturday, October 02, 2010 11:18 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
The MT webbox causes cancer it is so terrible.
On Oct 2, 2010 9:08 AM, Greg Ihnen
mailto:wireless-boun...@wispa.org
[mailto:wireless-boun...@wispa.org
mailto:wireless-boun...@wispa.org] On
Behalf Of Josh Luthman
Sent: Friday, October 01, 2010 10:38 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Compliments of Butch Evans
/ip
Luthman
Sent: Saturday, October 02, 2010 11:18 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
The MT webbox causes cancer it is so terrible.
On Oct 2, 2010 9:08 AM, Greg Ihnen os10ru...@gmail.com wrote:
That script should be the MT default when
[mailto:wireless-boun...@wispa.org]
On
Behalf Of Josh Luthman
Sent: Friday, October 01, 2010 10:38 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Compliments of Butch Evans
/ip firewal filt
add action=accept chain=forward comment=drop ssh
to but
wasn't comfortable with it at all.
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org]
On
Behalf Of Josh Luthman
Sent: Saturday, October 02, 2010 11:18 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
The MT webbox
On 10/02/2010 05:58 PM, Josh Luthman wrote:
New laptops don't have java.
Flash is one library and takes second to install.
Launch speeds are of no comparison, flash is way faster. Takes a lot
of time to warm up the virtual engine.
I find flash a PITA. java is one download off java.com;
My experience is the total opposite and I think the world agrees with me.
Youtube videos, games, ads, etc.
On Oct 2, 2010 6:22 PM, Leon D. Zetekoff wa4...@backwoodswireless.net
wrote:
WISPA Wants You! Join today!
HTML5 is better than either java or flash.
On Sat, Oct 2, 2010 at 5:32 PM, Josh Luthman
j...@imaginenetworksllc.com wrote:
My experience is the total opposite and I think the world agrees with me.
Youtube videos, games, ads, etc.
On Oct 2, 2010 6:22 PM, Leon D. Zetekoff
That's what I'm saying!
On Oct 2, 2010 6:57 PM, Philip Dorr wirel...@judgementgaming.com wrote:
HTML5 is better than either java or flash.
On Sat, Oct 2, 2010 at 5:32 PM, Josh Luthman
j...@imaginenetworksllc.com wrote:
My experience is the total opposite and I think the world agrees with me.
: Saturday, October 02, 2010 11:18 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
The MT webbox causes cancer it is so terrible.
On Oct 2, 2010 9:08 AM, Greg Ihnen os10ru...@gmail.com wrote:
That script should be the MT default when one checks
!
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Glenn Kelley
Sent: Friday, October 01, 2010 10:00 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Bob,
If memory serves me correct - you do not have a central
...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of RickG
Sent: Saturday, October 02, 2010 12:56 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
But thinking back on it, imagine the “Damn it!” looks on their faces if
they DID get in only
to themselves! Now THAT would
be hilarious!!!
Bob-
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of RickG
Sent: Saturday, October 02, 2010 12:56 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
But thinking back
...@wispa.orgmailto:wireless-boun...@wispa.org
[mailto:wireless-boun...@wispa.org] On Behalf Of RickG
Sent: Saturday, October 02, 2010 12:56 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
But thinking back on it, imagine the “Damn it!” looks on their faces
:56 AM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
But thinking back on it, imagine the “Damn it!” looks on their faces if
they DID get in only to find a nothing Mikrotik routerboard!
LOL, it would be funny to have something connected that did
General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
The new web admin in 5.0 looks like a web clone of winbox.
On Oct 2, 2010 11:57 AM, Josh Luthman j...@imaginenetworksllc.com wrote:
It doesn't answer anything. You can't configure anything. It screws up what
you have set
:58 PM
To: wireless@wispa.org
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
I asked them about a Java client a long time ago and they nixed it.. Said
there was a Windoze client and it could run under Wine. But I was looking at
other platforms. The biggest problem with Mikrotik
: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
The MT webbox causes cancer it is so terrible.
On Oct 2, 2010 9:08 AM, Greg Ihnen os10ru...@gmail.com wrote:
That script should be the MT default when one checks the protect
router
check box in the web UI.
Greg
On Oct 2
Agreed. Easy download though and yes, it can have issues.
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Josh Luthman
Sent: Saturday, October 02, 2010 5:59 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
New
But not on the iPhone
J
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Josh Luthman
Sent: Saturday, October 02, 2010 6:32 PM
To: WISPA General List; wa4...@arrl.net
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
My experience
The price is now 6.2 cents by the way. Inflation.
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Glenn Kelley
Sent: Saturday, October 02, 2010 8:16 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
IP Spoofing
Two options you may want to consider:
a) automatic blacklist scripts:
http://wiki.mikrotik.com/wiki/Bruteforce_login_prevention
b) firewalling off external access to your network management services
On Fri, Oct 1, 2010 at 4:57 PM, Robert West robert.w...@just-micro.com wrote:
Just had to deal
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Two options you may want to consider:
a) automatic blacklist scripts:
http://wiki.mikrotik.com/wiki/Bruteforce_login_prevention
b) firewalling off external access to your network management services
On Fri, Oct 1, 2010
Are you not using the brute force protection from the wiki? I use it on the
ports I must keep open. Three strikes they're out.
Greg
On Oct 1, 2010, at 5:27 PM, Robert West wrote:
Just had to deal with a brute force attack on a MT router acting as a
gateway.
Came from these two IP
I've often wondered, is it legal for the receipient of this sort of thing, to
retailiate with e.g. ping or curl storms?
Tom S.
- Original Message -
From: Robert West
To: 'WISPA General List'
Sent: Friday, October 01, 2010 2:57 PM
Subject: [WISPA] Brute Force Attack on
How about an 'interactive script' that detects such attacks and
automatically black lists them... ?
Now, now now.. what would you do with all that free time ?
-
http://wiki.mikrotik.com/wiki/Bruteforce_login_prevention
-
Faisal Imtiaz
Snappy Internet Telecom
On 10/1/2010 5:57
I like it but what if the ip is being masqueraded?
On Fri, Oct 1, 2010 at 7:00 PM, Tom Sharples tsharp...@qorvus.com wrote:
I've often wondered, is it legal for the receipient of this sort of
thing, to retailiate with e.g. ping or curl storms?
Tom S.
- Original Message -
why not just block china (and other countries) from access unless it is
something opened first from inside the network ?
Would make a big difference
:-)
On Oct 1, 2010, at 9:28 PM, RickG wrote:
61.155.5.247
Bob,
If memory serves me correct - you do not have a central network - is that right?
instead your just using multiple pops via cable modems?
If that is the case - it might be a bit more difficult - on the other hand - if
you have switched to a central network (or have this in some places)
[mailto:wireless-boun...@wispa.org] On
Behalf Of Glenn Kelley
Sent: Friday, October 01, 2010 10:00 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Bob,
If memory serves me correct - you do not have a central network - is that
right?
instead your just using
List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Bob,
If memory serves me correct - you do not have a central network - is that
right?
instead your just using multiple pops via cable modems?
If that is the case - it might be a bit more difficult - on the other hand
Yeah? Send me that link, dude!
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Greg Ihnen
Sent: Friday, October 01, 2010 6:06 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Are you not using the brute force
Why not?! Who would prevail if it ever came to a court?!
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Tom Sharples
Sent: Friday, October 01, 2010 7:00 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
I've often
7:48 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
How about an 'interactive script' that detects such attacks and
automatically black lists them... ?
Now, now now.. what would you do with all that free time ?
-
http://wiki.mikrotik.com/wiki
Then we'll just send the pigeons over to poop on them.
Easy.
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of RickG
Sent: Friday, October 01, 2010 9:29 PM
To: Tom Sharples; WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
just send the pigeons over to poop on them.
Easy.
*From:* wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] *On
Behalf Of *RickG
*Sent:* Friday, October 01, 2010 9:29 PM
*To:* Tom Sharples; WISPA General List
*Subject:* Re: [WISPA] Brute Force Attack on Mikrotik Gateway
: Friday, October 01, 2010 9:29 PM
To: Tom Sharples; WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
I like it but what if the ip is being masqueraded?
On Fri, Oct 1, 2010 at 7:00 PM, Tom Sharples tsharp...@qorvus.com wrote:
I've often wondered, is it legal
, 2010 6:06 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Are you not using the brute force protection from the wiki? I use it on the
ports I must keep open. Three strikes they're out.
Greg
On Oct 1, 2010, at 5:27 PM, Robert West wrote:
Just
, 2010, at 9:55 PM, Robert West wrote:
Yeah? Send me that link, dude!
*From:* wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] *On
Behalf Of *Greg Ihnen
*Sent:* Friday, October 01, 2010 6:06 PM
*To:* WISPA General List
*Subject:* Re: [WISPA] Brute Force Attack on Mikrotik
General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Are you not using the brute force protection from the wiki? I use it on the
ports I must keep open. Three strikes they're out.
Greg
On Oct 1, 2010, at 5:27 PM, Robert West wrote:
Just had to deal with a brute
, 2010, at 9:55 PM, Robert West wrote:
Yeah? Send me that link, dude!
*From:* wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] *On
Behalf Of *Greg Ihnen
*Sent:* Friday, October 01, 2010 6:06 PM
*To:* WISPA General List
*Subject:* Re: [WISPA] Brute Force Attack on Mikrotik
:* Friday, October 01, 2010 9:29 PM
*To:* Tom Sharples; WISPA General List
*Subject:* Re: [WISPA] Brute Force Attack on Mikrotik Gateway
I like it but what if the ip is being masqueraded?
On Fri, Oct 1, 2010 at 7:00 PM, Tom Sharples tsharp...@qorvus.com wrote:
I've often wondered, is it legal
*Sent:* Friday, October 01, 2010 9:29 PM
*To:* Tom Sharples; WISPA General List
*Subject:* Re: [WISPA] Brute Force Attack on Mikrotik Gateway
I like it but what if the ip is being masqueraded?
On Fri, Oct 1, 2010 at 7:00 PM, Tom Sharples tsharp...@qorvus.com
wrote:
I've often wondered
:* wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] *On
Behalf Of *Glenn Kelley
*Sent:* Friday, October 01, 2010 10:00 PM
*To:* WISPA General List
*Subject:* Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Bob,
If memory serves me correct - you do not have a central
Very nice! Thanks, dude!
From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On
Behalf Of Josh Luthman
Sent: Friday, October 01, 2010 10:38 PM
To: WISPA General List
Subject: Re: [WISPA] Brute Force Attack on Mikrotik Gateway
Compliments of Butch Evans
/ip firewal
59 matches
Mail list logo