Re: [CentOS] bruteforce protection howto

2010-03-30 Thread Bowie Bailey
Mihai T. Lazarescu wrote: > On Sat, Mar 20, 2010 at 05:24:34PM -0500, Larry Vaden wrote: > > >> On Sat, Mar 20, 2010 at 5:17 PM, Vadkan Jozsef >> wrote: >> >>> What's the best method to ban that ip [what is bruteforcig a server] >>> what was logged on the logger? >>> I need to ban the ip

Re: [CentOS] bruteforce protection howto

2010-03-22 Thread Steve Huff
On Mar 22, 2010, at 12:04 PM, Ray Leventhal wrote: > I'm rather fond of the apf + bfd [1] solution and use it regularly on RH > and CentOS systems. > > Both are available here but sadly no rpm(s) that I've found. apf is available from RPMforge for CentOS 5. -steve -- If this were played upo

Re: [CentOS] bruteforce protection howto

2010-03-22 Thread Ray Leventhal
On 3/20/2010 6:35 PM, Larry Brower wrote: > Larry Vaden wrote: > >> > +1 > > you might also look at APF + BFD as it works as well. Both solutions > are intended for the server and not for a remote host, however you > could probably work around this with a small shell script. > > This does beg

Re: [CentOS] bruteforce protection howto

2010-03-21 Thread Mihai T. Lazarescu
On Sat, Mar 20, 2010 at 05:24:34PM -0500, Larry Vaden wrote: > On Sat, Mar 20, 2010 at 5:17 PM, Vadkan Jozsef > wrote: > > > > What's the best method to ban that ip [what is bruteforcig a server] > > what was logged on the logger? > > I need to ban the ip on the router pc. > > http://www.fail2b

Re: [CentOS] bruteforce protection howto

2010-03-20 Thread Ned Slider
Larry Vaden wrote: > On Sat, Mar 20, 2010 at 5:17 PM, Vadkan Jozsef > wrote: >> What's the best method to ban that ip [what is bruteforcig a server] >> what was logged on the logger? >> I need to ban the ip on the router pc. > > but you may have

Re: [CentOS] bruteforce protection howto

2010-03-20 Thread Larry Brower
Larry Vaden wrote: > On Sat, Mar 20, 2010 at 5:17 PM, Vadkan Jozsef > wrote: >> What's the best method to ban that ip [what is bruteforcig a server] >> what was logged on the logger? >> I need to ban the ip on the router pc. > > but you may have

Re: [CentOS] bruteforce protection howto

2010-03-20 Thread Larry Vaden
On Sat, Mar 20, 2010 at 5:17 PM, Vadkan Jozsef wrote: > > What's the best method to ban that ip [what is bruteforcig a server] > what was logged on the logger? > I need to ban the ip on the router pc. but you may have to run fail2ban on the serve

[CentOS] bruteforce protection howto

2010-03-20 Thread Vadkan Jozsef
Two pc's: 1 - router 2 - logger Situation: someone tries to bruteforce into a server, and the logger get's a log about it [e.g.: ssh login failed]. What's the best method to ban that ip [what is bruteforcig a server] what was logged on the logger? I need to ban the ip on the router pc. How can