Defending against brute force ssh attacks
Posted by: agent0x0
Found a good article today on how to properly defend against brute force ssh attacks. I knew that iptables was one method to do it but there are many others. Take a look at this article for methods like:
* Strong passwords
* RSA authentication
* Using 'iptables' to block the attack
* Using the sshd log to block attacks
* Using tcp_wrappers to block attacks
* Using knockd
* Strong passwords
* RSA authentication
* Using 'iptables' to block the attack
* Using the sshd log to block attacks
* Using tcp_wrappers to block attacks
* Using knockd
OSSEC HIDS - Open Source Security
Posted by: agent0x0
Looking for a free, open source host based IDS which also runs on Windows and Linux? Check out OSSEC:
OSSEC HIDS - Open Source Security
I will be installing this in a few days to give you my review. It look very promising! Kinda like Cisco CSA for the masses...hmmm..here is a good review on OSSEC as well:
Linux.com Review
OSSEC HIDS - Open Source Security
I will be installing this in a few days to give you my review. It look very promising! Kinda like Cisco CSA for the masses...hmmm..here is a good review on OSSEC as well:
Linux.com Review
Proxy Sites Offer Secret Passage to Myspace
Posted by: agent0x0
Scary things those pesky proxy servers...Not only is this a problem for college networks but it is a major issue for corporate IT security as well. The majority of corporate networks are now starting to block Myspace. Especially with the recent "Flash banner ad Worm" that hit Myspace not long ago. These proxy sites allow users to basically bypass any web filtering that is installed at the gateway. There are hundreds of these sites and more poping up all the time. Products like Websense and SurfControl can help, however, these sites only get blocked when the products blocked lists get updated or the administrator manually adds the site(s) to a blocked list.
Slashdot | Proxy Sites Offer Secret Passage to Myspace
Slashdot | Proxy Sites Offer Secret Passage to Myspace