From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from randymail-a5.g.dreamhost.com (caiajhbdcbef.dreamhost.com [208.97.132.145]) by speech.braille.uwo.ca (Postfix) with ESMTP id 488C010B0F for ; Fri, 20 Mar 2009 10:44:14 -0400 (EDT) Received: from quan (76-10-130-2.dsl.teksavvy.com [76.10.130.2]) by randymail-a5.g.dreamhost.com (Postfix) with ESMTP id 26D208EFD4 for ; Fri, 20 Mar 2009 07:44:13 -0700 (PDT) From: "James Homuth" To: "'Speakup is a screen review system for Linux.'" References: <50FA21D3B04A453D9E9EA526C4282754@tdsdev><00c401c9a92c$848c4450$6400a8c0@quan><014501c9a963$48a418a0$6400a8c0@quan> <762BE32F83AF4C9BA5F7BC393F9539DE@tdsdev> Subject: RE: denyhosts quandry Date: Fri, 20 Mar 2009 10:44:04 -0400 Message-ID: <016601c9a96a$5163eae0$6400a8c0@quan> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook 11 Thread-Index: AcmpZK65L3GaqRYTRJiPegO3W1jmTwABX+og In-Reply-To: <762BE32F83AF4C9BA5F7BC393F9539DE@tdsdev> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3350 X-BeenThere: speakup@braille.uwo.ca X-Mailman-Version: 2.1.12 Precedence: list Reply-To: "Speakup is a screen review system for Linux." List-Id: "Speakup is a screen review system for Linux." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 20 Mar 2009 14:44:14 -0000 It doesn't help much. Mine, at least, wouldn't stop asking for a password even if I set SSHD to ask for public key only. So rather than fight with it, I recompiled OpenSSH without it. -----Original Message----- From: speakup-bounces@braille.uwo.ca [mailto:speakup-bounces@braille.uwo.ca] On Behalf Of Tyler Littlefield Sent: March 20, 2009 10:03 AM To: Speakup is a screen review system for Linux. Subject: Re: denyhosts quandry started removing pam? >.> I've found it has helped me in locking down on security, though I'm not really sure by how much. Thanks, Tyler Littlefield Web: tysdomain.com email: tyler@tysdomain.com My programs don't have bugs, they're called randomly added features. ----- Original Message ----- From: "James Homuth" To: "'Speakup is a screen review system for Linux.'" Sent: Friday, March 20, 2009 7:53 AM Subject: RE: denyhosts quandry > Fail2Ban operates along the same theory as Denyhosts, though. So whatever > regular expression causes Denyhosts to flip out will probably do the same > for Fail2ban. Tried it on my Gentoo boxes a while back and noticed very > little if any difference. So instead I switched back to Denyhosts and > started removing PAM from my system. > > -----Original Message----- > From: speakup-bounces@braille.uwo.ca > [mailto:speakup-bounces@braille.uwo.ca] > On Behalf Of Kirk Reiser > Sent: March 20, 2009 8:58 AM > To: Speakup is a screen review system for Linux. > Subject: Re: denyhosts quandry > > A package I just recently found and have installed on a couple of systems > is > fail2ban which has a bunch of popular rule sets included and is easily > expandable by the user. Basically it parses your systems logs and then > performas ip blocks with iptables based on your specifications. It has > ssh > buffer overrun pertection built-in by default. It also has others you can > easily enable. There's a debian package so I imagine there are packages > available for other distro's as well. > > Kirk > -- > Kirk Reiser The Computer Braille Facility > e-mail: kirk@braille.uwo.ca University of Western Ontario > phone: (519) 661-3061 > _______________________________________________ > Speakup mailing list > Speakup@braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup > > _______________________________________________ > Speakup mailing list > Speakup@braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup _______________________________________________ Speakup mailing list Speakup@braille.uwo.ca http://speech.braille.uwo.ca/mailman/listinfo/speakup