Automatic blocking of attackers' IP
From: FEEB (feeb_at_chem.utoronto.ca)
Date: 09/07/04
- Next message: Mark A. Odell: "Re: Automatic blocking of attackers' IP"
- Previous message: MD: "Re: Digital Certificate Expiration Utility"
- Next in thread: Mark A. Odell: "Re: Automatic blocking of attackers' IP"
- Reply: Mark A. Odell: "Re: Automatic blocking of attackers' IP"
- Reply: Gandalf Parker: "Re: Automatic blocking of attackers' IP"
- Reply: Geoffrey King: "Re: Automatic blocking of attackers' IP"
- Reply: P Gentry: "Re: Automatic blocking of attackers' IP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 07 Sep 2004 09:53:31 -0400 (EDT)
Hi,
I would like to have the following scenario implemented on my network:
1.
Someone tries repeatedly and illegally to log in as 'admin', 'root' or
whatever from some IP using SSH (or any other means).
2.
When the number of attempts reaches a predefined trigger level, an action
occurs (a script is executed, etc.)
The definition of attempts, the trigger level and the resulting action
should be configurable.
Is a watchdog like that that would fulfill my requirements available
somewhere out there or do I have to sit down and start scripting?
Thanks
Frank Bures, <feeb@chem.utoronto.ca>
- Next message: Mark A. Odell: "Re: Automatic blocking of attackers' IP"
- Previous message: MD: "Re: Digital Certificate Expiration Utility"
- Next in thread: Mark A. Odell: "Re: Automatic blocking of attackers' IP"
- Reply: Mark A. Odell: "Re: Automatic blocking of attackers' IP"
- Reply: Gandalf Parker: "Re: Automatic blocking of attackers' IP"
- Reply: Geoffrey King: "Re: Automatic blocking of attackers' IP"
- Reply: P Gentry: "Re: Automatic blocking of attackers' IP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
