[BlueOnyx:01027] Re: Brute Force DOS attackes

Andrew Marentis amarentis at gmail.com
Wed Apr 8 11:31:05 -05 2009 

It is OK to have your server do the firewall functionality, but I would not
recommend it for a real solution. It is better to have that stuff detected
before it gets to the servers. After the firewall is setup to detect and
deal with the attack, then have the servers themselves protected from that
type of attack, shut down if the server gets overloaded, rather then
exploited. But it is just a suggestion.

On Wed, Apr 8, 2009 at 9:13 AM, Jeff Folk <jefffolk at mac.com> wrote:

> I'm assuming a BlueOnyx box...
> Install dFix and DenyHost or Fail2Ban. Greg just posted the other day
> a wonderful tool. Here's his post in case you missed it:
>
> > Hi Blue*s
> >
> > Many of you have been using DFix to protect your servers. Its been a
> > pet
> > project of mine for some time that grew out of necessity when we all
> > had
> > problems with dovecot/pam lockups. DFix is able to detect, block and
> > report many common brute force attacks against your server. Just
> > install
> > it, and watch the bad guys get stopped in their tracks.
> >
> > Today, DFix has been re-released by Compass Networks as a PKG file.
> > Some
> > good news...
> >  * It's still free
> >  * Easy install and updates are available via NewLinQ (Our enhanced
> > BlueLinQ update facility)
> >  * Works with BlueQuartz or BlueOnyx
> >  * Email notification when an update is available via BlueLinQ.
> >  * Server notification light will also come on if an update is
> > available.
> > (To enable notification, you have to turn on periodic checks in your
> > server console)
> >
> > To read more about DFix, go to
> http://www.compassnetworks.com.au/?page=dfix
> >
> > Also available via NewLinQ (at no cost) is DenyHosts. This tool is
> > specifically designed to block SSH brute force attacks. It also links
> > back to a central server to block some of the most prolific hackers
> > before they even try to break in. It's the perfect companion package
> > for
> > DFix.
> >
> > More information about denyhosts is available at
> > http://www.compassnetworks.com.au/?page=denyhosts
> >
> > Regards,
> > Greg Kuhnert
>
> On Apr 8, 2009, at 10:57 AM, Paul wrote:
>
> > Please can anyone help with advice on stopping brute force attacks
> > and dos attacks on my home server?
> >
> >
> > _______________________________________________
> > Blueonyx mailing list
> > Blueonyx at blueonyx.it
> > http://www.blueonyx.it/mailman/listinfo/blueonyx
>
> _______________________________________________
> Blueonyx mailing list
> Blueonyx at blueonyx.it
> http://www.blueonyx.it/mailman/listinfo/blueonyx
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20090408/372f2a49/attachment.html>

More information about the Blueonyx mailing list