On Mon, 2010-05-24 at 23:55 +0700, David Suhendrik wrote: > Hello All, > I had problems with the security server, the server is frequently > attacked using bruteforce attacks. Is there an application that can > perform automatic blocking when there are failed login to the ports > smtp, pop3 port, and others? > > I am currently using CentOS 5.5 in some servers > Thanks in advanced....... > > -- > -- > Best regards, > David > http://blog.pnyet.web.id > _______________________________________________ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos
If you want an complete IDS then you could go for OSSEC (http://www.ossec.net/). You can configure it to scan whatever log file you like and block the ip that generate an error message in that log file. While it could be a little overhead to tweak, it can achieve remarkable results. Calin Key fingerprint = 37B8 0DA5 9B2A 8554 FB2B 4145 5DC1 15DD A3EF E857 ================================================= The climate of Bombay is such that its inhabitants have to live elsewhere.
_______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
