Full Disclosure mailing list archives
Re: reduction of brute force login attempts via SSHthrough iptables --hashlimit
From: "Christian \"Khark\" Lauf" <full-disclosure () kharkerlake net>
Date: Wed, 01 Mar 2006 00:04:03 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ho, Josh Berry wrote:
I could be wrong, but doesn't last/lastb show users have have logged in/out. Therefore it wouldn't necessarily catch brute-forcers (unless they were actually successful)?
Under Debian Sarge all failed/successfull logins and su-actions are logged to /var/log/auth.log. lastb isn't touched. Even if it exists. Greetings, Christian "Khark" Lauf - -- Christian "Khark" Lauf <khark () kharkerlake net> GPG: 0x6AADC60A | IRCnet/silcnyet: Khark silcnyet-Fingerprint: 9424 E3BF B637 E1FC E355 BA7C 01CC 1B68 3A1C E330 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (MingW32) iD8DBQFEBNbjAaLWKGqtxgoRAocRAJwJBQS7op4/dFi34M2FRZoKlNQU7wCeOIsj wRZHckIfnVlE3IpsZLVtNFE= =ngQH -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: reduction of brute force login attempts via SSHthrough iptables --hashlimit Josh Berry (Feb 28)
- Re: reduction of brute force login attempts via SSHthrough iptables --hashlimit Christian "Khark" Lauf (Feb 28)
- Re: reduction of brute force login attempts via SSHthrough iptables --hashlimit Christian "Khark" Lauf (Feb 28)
- Re: reduction of brute force login attempts via SSHthrough iptables --hashlimit Gary Leons (Feb 28)
- Re: reduction of brute force login attempts via SSHthrough iptables --hashlimit Christian "Khark" Lauf (Feb 28)