From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from spaceymail-a6.g.dreamhost.com (caibbdcaaaaf.dreamhost.com [208.113.200.5]) by speech.braille.uwo.ca (Postfix) with ESMTP id 46C27109BF for ; Fri, 20 Mar 2009 10:49:07 -0400 (EDT) Received: from tdsdev (unknown [168.103.85.95]) by spaceymail-a6.g.dreamhost.com (Postfix) with ESMTP id 976A6CA7B2 for ; Fri, 20 Mar 2009 07:49:06 -0700 (PDT) Message-ID: <22F0E14AC7BE48E08C7CE41E1699FF81@tdsdev> From: "Tyler Littlefield" To: "Speakup is a screen review system for Linux." References: <50FA21D3B04A453D9E9EA526C4282754@tdsdev><00c401c9a92c$848c4450$6400a8c0@quan><014501c9a963$48a418a0$6400a8c0@quan><762BE32F83AF4C9BA5F7BC393F9539DE@tdsdev> <016601c9a96a$5163eae0$6400a8c0@quan> Subject: Re: denyhosts quandry Date: Fri, 20 Mar 2009 08:49:05 -0600 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.5512 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.5579 X-BeenThere: speakup@braille.uwo.ca X-Mailman-Version: 2.1.12 Precedence: list Reply-To: "Speakup is a screen review system for Linux." List-Id: "Speakup is a screen review system for Linux." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 20 Mar 2009 14:49:07 -0000 nice. I hadn't had that issue, but then again my apt-get does it all for me. I'm not pacient enough to sit there and wait for openSSH to compile and fight with it on something like slackware, though it would probably be the prefered method of configuring things. Then I wouldn't be at the mercy of the package maintainers. Thanks, Tyler Littlefield Web: tysdomain.com email: tyler@tysdomain.com My programs don't have bugs, they're called randomly added features. ----- Original Message ----- From: "James Homuth" To: "'Speakup is a screen review system for Linux.'" Sent: Friday, March 20, 2009 8:44 AM Subject: RE: denyhosts quandry > It doesn't help much. Mine, at least, wouldn't stop asking for a password > even if I set SSHD to ask for public key only. So rather than fight with > it, > I recompiled OpenSSH without it. > > -----Original Message----- > From: speakup-bounces@braille.uwo.ca > [mailto:speakup-bounces@braille.uwo.ca] > On Behalf Of Tyler Littlefield > Sent: March 20, 2009 10:03 AM > To: Speakup is a screen review system for Linux. > Subject: Re: denyhosts quandry > > started removing pam? >.> > I've found it has helped me in locking down on security, though I'm not > really sure by how much. > > > Thanks, > Tyler Littlefield > Web: tysdomain.com > email: tyler@tysdomain.com > My programs don't have bugs, they're called randomly added features. > > ----- Original Message ----- > From: "James Homuth" > To: "'Speakup is a screen review system for Linux.'" > > Sent: Friday, March 20, 2009 7:53 AM > Subject: RE: denyhosts quandry > > >> Fail2Ban operates along the same theory as Denyhosts, though. So whatever >> regular expression causes Denyhosts to flip out will probably do the same >> for Fail2ban. Tried it on my Gentoo boxes a while back and noticed very >> little if any difference. So instead I switched back to Denyhosts and >> started removing PAM from my system. >> >> -----Original Message----- >> From: speakup-bounces@braille.uwo.ca >> [mailto:speakup-bounces@braille.uwo.ca] >> On Behalf Of Kirk Reiser >> Sent: March 20, 2009 8:58 AM >> To: Speakup is a screen review system for Linux. >> Subject: Re: denyhosts quandry >> >> A package I just recently found and have installed on a couple of systems >> is >> fail2ban which has a bunch of popular rule sets included and is easily >> expandable by the user. Basically it parses your systems logs and then >> performas ip blocks with iptables based on your specifications. It has >> ssh >> buffer overrun pertection built-in by default. It also has others you >> can >> easily enable. There's a debian package so I imagine there are packages >> available for other distro's as well. >> >> Kirk >> -- >> Kirk Reiser The Computer Braille Facility >> e-mail: kirk@braille.uwo.ca University of Western Ontario >> phone: (519) 661-3061 >> _______________________________________________ >> Speakup mailing list >> Speakup@braille.uwo.ca >> http://speech.braille.uwo.ca/mailman/listinfo/speakup >> >> _______________________________________________ >> Speakup mailing list >> Speakup@braille.uwo.ca >> http://speech.braille.uwo.ca/mailman/listinfo/speakup > > _______________________________________________ > Speakup mailing list > Speakup@braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup > > _______________________________________________ > Speakup mailing list > Speakup@braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup