Question bruteforcing
Matt Domsch
Matt_Domsch at dell.com
Tue May 30 03:37:44 UTC 2006
On Mon, May 29, 2006 at 08:37:39PM -0400, CodeHeads wrote:
> On Tue, 30 May 2006 00:31:52 +0200 nightrid3r <03taxi at gmail.com> wrote:
>
> > Op ma, 29-05-2006 te 17:03 -0500, schreef Mike C:
> > > What exactly is bruteforcing and is their away to stop it in fedora
> > > without useing a router or firewall box?
> > >
> > > Thanks for any help
> > >
> > bruteforcing is an atack (useualy against the root account or a known
> > user name) where the attacker uses a password generator or dictionary to
> > test all possible paswords.
> >
> > the only defence i know of is setting up your system so that iptables
> > deny's the attack source after a number of failed attempts.
> > Can't give further info cos i have no idea how to do it. (don't realy
> > understand iptables enough to do it)
>
>
> I know that there are shell scripts out there out automate putting the IP in
> the hosts.deny list.
> Here is something I found using google. It was the 1st hit.
> http://la-samhna.de/library/brutessh.html
DenyHosts does this too, and it's in Extras. :-)
# yum install denyhosts
Thanks,
Matt
--
Matt Domsch
Software Architect
Dell Linux Solutions linux.dell.com & www.dell.com/linux
Linux on Dell mailing lists @ http://lists.us.dell.com
More information about the fedora-list
mailing list