[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

RE: Server Probing

I will take a look at fail2ban

Thanks ALL!!!


-----Original Message-----
From: redhat-list-bounces redhat com [mailto:redhat-list-bounces redhat com] On Behalf Of m roth 5-cent us
Sent: Tuesday, January 29, 2013 8:54 AM
To: General Red Hat Linux discussion list
Subject: Re: Server Probing

Stephen Gilbert wrote:
> On Tue, Jan 29, 2013 at 11:18 AM, Florez, Nestor <NFlorez sdcwa org>
> wrote:
>> Hi,
>> I apologize is this is the wrong place to ask about probing.
>> Some of our servers were probed back on the 24th of January By these 
>> IP addresses
>> And in the last 24 hours by these IP addresses

> I use iptables to lock down any ports I don't want exposed, then use 
> fail2ban to block people trying to brute force their way in.

Second on fail2ban. We use it here at work, and we get scanned a *lot*, both by the security team, and a lot of places around the world - Brazil, China, Germany (did I mention China), etc - but we're a US government facility, and so an obvious target.


redhat-list mailing list
unsubscribe mailto:redhat-list-request redhat com?subject=unsubscribe

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]