[unisog] step up in SSH scanning starting today?

Andy Feldt feldt at nhn.ou.edu
Tue May 13 17:53:05 GMT 2008


Couples, Christopher wrote:
> The debian advisory is due to a failure in seeding the RNG for openssl during keygen; a wave of password attacks, as we're pretty much all noting, wouldn't seem to be related.
>
> As a side note, someone mentioned autoban to programmatically add brute-forcing hosts to hosts.deny; I'd also like to plug denyhosts, a python script that can also be found on sourceforge. Are there other tools that are widely in use, or are most folks simply rolling their own?
>
> ---
> Christopher Couples
> Core Systems
> Wharton Computing and Information Technology
> Wharton School of Business
>
>   
For those who run an OS without iptables and who do not want
to modify hosts.deny, there is pam_abl:

http://www.hexten.net/wiki/index.php/Pam_abl

Andy

-- 
Andy Feldt
Senior System Support Programmer
Affiliate Assistant Professor
Homer L. Dodge Department of Physics and Astronomy
The University of Oklahoma



More information about the unisog mailing list