[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Re: [NETVAERK] Hacker



On Sun, 22 Apr 2007 22:18:30 +0200
Henrik Dige Semark <sslug@sslug> wrote:

> Hej SSLUG
> 
> Jeg har her i weekenden haft en person som har lavet 8.000
> hackerforsøg på root med SSH. (lykkedes ikke)
> 
> Er det muligt at sætte serveren op til at blokere ip-adressen efter
> XX antal mislykkedes forsøg på at logge på systemet?
> 
> Jeg mener det har været oppe før, og det var noget med iptables… men 
> mere kan jeg ikke huske, og jeg kunne heller ikke lige finde det…
> 

Og langt det letteste til at fjerne de automatiserede forsøg er bare at
køre din ssh daemon på en ikke standardiseret port. Så skal de i hvert
fald til at scanne efter ssh åbne porte - hvilket jeg heldigvis ikke
har set spor af i min log endnu.

Mvh
Jesper K. Pedersen


 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2007-05-01, 02:01 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *