[nlug] Re: Hack the firewall day

Date view Thread view Subject view Author view Attachment view

From: Dagmar d'Surreal (Yeah, right)
Date: 07/18/06

  • Next message: Dagmar d'Surreal: "[nlug] Re: Grub users, prepare to defend your choice of"

    On 7/17/06, David R. Wilson <Yeah, right> wrote:
    > Hello fellows,
    >
    > Has anyone else seen an increase in attempts to hack boxes recently?
    > I watched one in progress on a firewall today that was automated.
    > Something over 1000 attempts was made from the same address from APNIC.
    >
    > Beside being really anal and blocking specific addresses, is there a
    > good way to fight this?

    A "deny all" policy as the basis of your security.

    You're going to have to be more specific than just "attempts to hack
    boxes". I see all kinds of stupid crap going on hitting the firewall
    on the cablemodem, most of which isn't worth paying a bit of attention
    to.

    If you're seeing brute force SSH attempts, there's a relatively easy
    way to silence them for good. 

    -- 
Send all requests to:  Yeah, right
 Put your command in the SUBJECT of the message:
   "subscribe" or "unsubscribe"
Quick unsubscribe: <mailto:Yeah, right?Subject=3Dunsubscribe>
Mailing list archives may be found at: <http://www.nlug.org/mail/>
**********************************************************************
This list is from your pals at NetCentral <http://www.netcentral.com/>
  • Next message: Dagmar d'Surreal: "[nlug] Re: Grub users, prepare to defend your choice of"
    Date view Thread view Subject view Author view Attachment view

    This archive was generated by hypermail 2.1.6 : 07/18/06 CDT