[TriLUG] illegal logon question

WA Brown brownwa at ftc-i.net
Thu Mar 9 02:38:03 EST 2006


They wouldnt call it roadrage if I could find out exactly who it is! :)  If 
they dont break in then they wont get hurt! LOL!! I have no symapthy for a 
thief.



----- Original Message ----- 
From: "Cristobal Palmer" <cristobalpalmer at gmail.com>
To: "Triangle Linux Users Group discussion list" <trilug at trilug.org>
Sent: Thursday, March 09, 2006 1:53 AM
Subject: Re: [TriLUG] illegal logon question


While that sounds satisfying, it is (a) illegal in many places and (b)
not going to stem the tide of people who will continue to scan. It's
like trying to get back at people with road rage.

If you want to do something, you should probably limit yourself to
reporting offenders to their ISPs, which is only really useful if
they're in Western Europe, the US, Canada and very few other places.

My advice: (1) set up denyhosts or something similar. (2) Use a
hard-to-crack passwords like "p|-|4r7fa<3s" or something similar (as
opposed to "bob" ;-). (3) look for and implement tools to harden your
system (eg. tripwire, tiger). (4) Don't run services you don't need.
(5) read news postings for both your distro and the services you run.

If you really want to reduce the number of scanners, work to promote
the use of good security practices in Linux and other systems. Speak
up to demand sensible defaults (like a disabled root account in
Ubuntu).

As a follow-up to (3), I suggest you look into "Debian hardened" (
http://www.debian-hardened.org/doku.php ). You can use the resources
there to secure an Ubuntu system in much the same way.

Keep asking questions! We all learn in the process :)

-CMP

On 3/9/06, WA Brown <brownwa at ftc-i.net> wrote:
> Is there something that could be done with people who try to login to your
> machine? Like the ones who have been hitting me. I would love to give them
> an opening and when they get there a script can delete their harddrive or
> corrupt their files or something like that. Can that be done?
>
> WA Brown
>
>
> --
> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ  : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
>


--

Cristobal M. Palmer
UNC-CH SILS Student
cristobalpalmer at gmail.com
cmpalmer at ils.unc.edu
ils.unc.edu/~cmpalmer
"Television-free since 2003"
-- 
TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
TriLUG Organizational FAQ  : http://trilug.org/faq/
TriLUG Member Services FAQ : http://members.trilug.org/services_faq/





More information about the TriLUG mailing list