Re: [MLUG] Lax security practices?

Email address obfuscation in effect -- please click here to turn it off.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: MLUG Members <EMAIL:PROTECTED>
Subject: Re: [MLUG] Lax security practices?
From: Phillip Kelchen <EMAIL:PROTECTED>
Date: Tue, 21 Mar 2006 22:35:59 -0600
Delivery-date: Tue, 21 Mar 2006 22:34:14 -0600
Envelope-to: EMAIL:PROTECTED
In-reply-to: <EMAIL:PROTECTED>
References: <EMAIL:PROTECTED> <EMAIL:PROTECTED> <EMAIL:PROTECTED>
Reply-to: MLUG Members <EMAIL:PROTECTED>
Sender: EMAIL:PROTECTED
User-agent: KMail/1.9.1

On Tuesday 21 March 2006 22:27, Josh wrote:
> For those lucky enough to run Debian, I highly recommend installing
> fail2ban.
>
> If you have a publically available SSH server, check your auth.log... I
> find most such machines have (literally) a thousand or so failed login
> attempts a day from bots searching for weak machines. fail2ban is a
> great debian package that uses an iptables blacklist to block any IP
> with 4 or more failed attempts in some short time period from logging in
> for the next 600 seconds.
>
> apt-get install fail2ban

How would I do this on a SuSE box? Locate and whereis turn up no sign of 
auth.log. What else might it be called or what dir is it sitting in on your 
box?

Phillip

_______________________________________________
members mailing list
EMAIL:PROTECTED
http://mlug.missouri.edu/mailman/listinfo/members

Follow-Ups:
- Re: [MLUG] Lax security practices?
  - From: Daniel Nowlin <EMAIL:PROTECTED>

References:
- [MLUG] Lax security practices?
  - From: Phillip Kelchen <EMAIL:PROTECTED>
- Re: [MLUG] Lax security practices?
  - From: Daniel Nowlin <EMAIL:PROTECTED>
- Re: [MLUG] Lax security practices?
  - From: Josh <EMAIL:PROTECTED>

Prev by Date: Re: [MLUG] Lax security practices?
Next by Date: Re: [MLUG] Lax security practices?
Previous by thread: Re: [MLUG] Lax security practices?
Next by thread: Re: [MLUG] Lax security practices?
Index(es):
- Date
- Thread