[TriLUG] Drop script kitties
Derek Linz
chapelhilllaptopshop at gmail.com
Tue Oct 11 06:25:19 EDT 2011
Sometimes there's nothing wrong with using a shotgun....
service BlockCountries status -v
Blocked countries IP filter is running and configured to block:
cn - China
ru - Russian Federation
However, the following exceptions are exist:
TCP ports permitted (input):
443 https
25 smtp (mail)
587 submission (msa)
465 urd (smtps)
53 domain
UDP port permitted (input):
53 domain
I also use denyhosts, though I like fail2ban too.
-Derek Linz
On Tue, Oct 11, 2011 at 6:01 AM, Tarus Balog <tarus at opennms.org> wrote:
>
> On Oct 11, 2011, at 5:56 AM, Matt Flyer wrote:
>
> > Fail2ban would be a good tool for this. It will analyze the logs, and
> > actively block the IP of the offender for a period of time you specify.
>
> Danke!
>
> -T
>
> _______________________________________________________________________
> Tarus BALOG, OpenNMS Maintainer Main: +1 919 533 0160
> The OpenNMS Group, Inc. Fax: +1 773 345 3645
> Email: tarus at opennms.org URL: http://www.opennms.org
> PGP Key Fingerprint: 8945 8521 9771 FEC9 5481 512B FECA 11D2 FD82 B45C
>
>
> --
> This message was sent to: Derek Linz <chapelhilllaptopshop at gmail.com>
> To unsubscribe, send a blank message to trilug-leave at trilug.org from that
> address.
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> Unsubscribe or edit options on the web :
> http://www.trilug.org/mailman/options/trilug/chapelhilllaptopshop%40gmail.com
> TriLUG FAQ :
> http://www.trilug.org/wiki/Frequently_Asked_Questions
>
More information about the TriLUG
mailing list