TotalPenguin - More Linux than Kernel 2.6

EugenS · #1 (**permalink**) 06-22-2008, 02:07 PM

Is it enough to just make the passwords lenghty, with no meaning, with lower and uppercase letters? Or do you have to take more measures.

Crop · #2 (**permalink**) 06-22-2008, 02:22 PM

No. If you run a public webserver you should also use login detection software. The software will allow you to specify when to ban someone based on how many times they attempted to login. For example, if you set it at 5 and I tried (and failed) 5 times to login as root then the software would ban me.

There are two that I know of BFD (Brute Force Detection) and LFD (Logon Failure Daemon). Both work well.

LissaValerian · #3 (**permalink**) 06-22-2008, 05:01 PM

I would also suggest AFP here:

R-fx Networks - Internet Security Solutions - Projects � APF

It's one of the tools I use:

From their website:

Advanced Policy Firewall (APF) is an iptables(netfilter) based firewall system designed around the essential needs of today's Internet deployed servers and the unique needs of custom deployed Linux installations. The configuration of APF is designed to be very informative and present the user with an easy to follow process, from top to bottom of the configuration file. The management of APF on a day-to-day basis is conducted from the command line with the 'apf' command, which includes detailed usage information and all the features one would expect from a current and forward thinking firewall solution.

Prog · #4 (**permalink**) 06-23-2008, 05:11 PM

I've used AFP before, excellent firewall.

EugenS · #5 (**permalink**) 06-24-2008, 02:03 PM

Thanks a lot guys. I'll check the APF and the brute force detectors...

LissaValerian · #6 (**permalink**) 06-24-2008, 02:29 PM

Quote:

Originally Posted by EugenS

Thanks a lot guys. I'll check the APF and the brute force detectors...

Good luck! There are how-to's out there that describe a joint APF+BFD install, they work well in combo. It's what I use.

Good luck!

~Lissa Valerian

rumen · #7 (**permalink**) 06-24-2008, 05:58 PM

Quote:

Originally Posted by LissaValerian

I would also suggest AFP here:

R-fx Networks - Internet Security Solutions - Projects � APF

It's one of the tools I use:

From their website:

Advanced Policy Firewall (APF) is an iptables(netfilter) based firewall system designed around the essential needs of today's Internet deployed servers and the unique needs of custom deployed Linux installations. The configuration of APF is designed to be very informative and present the user with an easy to follow process, from top to bottom of the configuration file. The management of APF on a day-to-day basis is conducted from the command line with the 'apf' command, which includes detailed usage information and all the features one would expect from a current and forward thinking firewall solution.

Hey, thank you a lot for this valuable info

It looks really promising.

EugenS · #8 (**permalink**) 06-27-2008, 09:34 PM

I tried and, what would you know, I've broken my fingers, heh. Might wanna call that friend of mine that's good with computers

LissaValerian · #9 (**permalink**) 06-30-2008, 08:58 PM

Quote:

Originally Posted by EugenS

I tried and, what would you know, I've broken my fingers, heh. Might wanna call that friend of mine that's good with computers

Well, good luck with that!

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Force an RPM install	Prog	Linux Applications	2	10-31-2007 01:03 PM
Brute Force Attacks	Wanch	Linux Security	5	10-18-2007 12:39 AM
I tried to sell Linux Laptops with Paypal but they refuse to protect me!	kernel	Linux News	0	09-20-2007 02:55 PM

TotalPenguin - More Linux than Kernel 2.6

User

Forum Menu

Sponsors