[unisog] step up in SSH scanning starting today?

Andy Feldt feldt at nhn.ou.edu
Tue May 13 17:53:05 GMT 2008

Couples, Christopher wrote:
> The debian advisory is due to a failure in seeding the RNG for openssl during keygen; a wave of password attacks, as we're pretty much all noting, wouldn't seem to be related.
> As a side note, someone mentioned autoban to programmatically add brute-forcing hosts to hosts.deny; I'd also like to plug denyhosts, a python script that can also be found on sourceforge. Are there other tools that are widely in use, or are most folks simply rolling their own?
> ---
> Christopher Couples
> Core Systems
> Wharton Computing and Information Technology
> Wharton School of Business
For those who run an OS without iptables and who do not want
to modify hosts.deny, there is pam_abl:



Andy Feldt
Senior System Support Programmer
Affiliate Assistant Professor
Homer L. Dodge Department of Physics and Astronomy
The University of Oklahoma

More information about the unisog mailing list