Dear freebsd list,
My server, which is a amd64 system running freebsd 8.0 is currently under
attack from a botnet or something. Take a look at my /var/log/auth.log file:
Jun 18 12:00:00 dual newsyslog[34486]: logfile turned over due to size100K
Jun 18 12:00:44 dual sshd[34500]: Address
Hello,
1, maybe the line with the rule is in a bad place in the conf, but even if
it's working it's possible that it wont be triggered. As far as I can see
there are 30 sec interval pauses between attacks from one host. Your rule is
looking for connections in 30 sec ranges.
2,You should use a
On Friday 18 June 2010 13:23:27 Dino Vliet wrote:
Dear freebsd list,
My server, which is a amd64 system running freebsd 8.0 is currently under
attack from a botnet or something. Take a look at my /var/log/auth.log
file:
[...]
I looked at this and especially the way they seem to try
On 6/18/2010 8:23 AM, Dino Vliet wrote:
2) are there other things I could do?
Brgds
Dino
Look at ports/security/sshguard and ports/security/bruteblock.
I use sshguard with ipfilter, but it works with pf and ipfw as well. It
is very simple to set up and gets the job done.
Jerry
[...]
Look at ports/security/sshguard and ports/security/bruteblock.
I use sshguard with ipfilter, but it works with pf and ipfw as well.
It is very simple to set up and gets the job done.
Jerry
___
freebsd-questions@freebsd.org mailing list
Hi,
On 6/18/10 11:29 AM, Kaya Saman wrote:
[...]
Look at ports/security/sshguard and ports/security/bruteblock.
I use sshguard with ipfilter, but it works with pf and ipfw as well.
It is very simple to set up and gets the job done.
Hi just wanted to say thanks for stating this as I'm also
On 18/06/2010 18:48, Glen Barber wrote:
Hi,
On 6/18/10 11:29 AM, Kaya Saman wrote:
[...]
Look at ports/security/sshguard and ports/security/bruteblock.
I use sshguard with ipfilter, but it works with pf and ipfw as well.
It is very simple to set up and gets the job done.
Hi just wanted to
On Fri, Jun 18, 2010 at 11:48:25AM -0400, Glen Barber wrote:
Hi,
On 6/18/10 11:29 AM, Kaya Saman wrote:
[...]
Look at ports/security/sshguard and ports/security/bruteblock.
I use sshguard with ipfilter, but it works with pf and ipfw as well.
It is very simple to set up and gets the job
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Kaya Saman wrote:
On 18/06/2010 18:48, Glen Barber wrote:
Hi,
On 6/18/10 11:29 AM, Kaya Saman wrote:
[...]
Look at ports/security/sshguard and ports/security/bruteblock.
I use sshguard with ipfilter, but it works with pf and ipfw as well.
It
Am 18.06.10 17:55, schrieb Jason Dixon:
Doesn't FreeBSD's version of pf support the overload feature? This is
how we typically manage ssh bruteforce attempts in OpenBSD/pf-land.
and what you want to do if a user connects authorizied very often in
lets say 10 seconds?
If you work e.g. with
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 18/06/2010 16:55:14, Jason Dixon wrote:
Doesn't FreeBSD's version of pf support the overload feature? This is
how we typically manage ssh bruteforce attempts in OpenBSD/pf-land.
Sure it does. pf in FreeBSD 7.2+ or 8.0+ is basically the same as
On 06/18/2010 06:59 PM, Greg Larkin wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Kaya Saman wrote:
On 18/06/2010 18:48, Glen Barber wrote:
Hi,
On 6/18/10 11:29 AM, Kaya Saman wrote:
[...]
Look at ports/security/sshguard and ports/security/bruteblock.
I
On Tue, Feb 23, 2010 at 11:56:18PM +0100, Torgeir Hoffmann wrote:
Hi Gary,
On 23 February 2010 23:28, Gary Kline kl...@thought.org wrote:
Some years ago I thought that future java tools would have
BSD ports that did not demand that we fetch them ourselves?
Now,
On Wed, 24 Feb 2010, Gary Kline wrote:
Still cannot find the Latest tzupdater; it's like 90 links to
find the bloody thing. Aaarrrgh.
cd /usr/ports/java/jdk16
make config
turn off TZUPDATE
-Warren Block * Rapid City, South Dakota USA
On Wed, Feb 24, 2010 at 07:29:22PM -0700, Warren Block wrote:
On Wed, 24 Feb 2010, Gary Kline wrote:
Still cannot find the Latest tzupdater; it's like 90 links to
find the bloody thing. Aaarrrgh.
cd /usr/ports/java/jdk16
make config
turn off TZUPDATE
Thanks very much
Some years ago I thought that future java tools would have
BSD ports that did not demand that we fetch them ourselves?
Now, among the few things left to rebuild/update is
diablo-jdk16. The makefile sez to fetch
tzupdater-1_3_25-2009u.zip.
Can
Hi Gary,
On 23 February 2010 23:28, Gary Kline kl...@thought.org wrote:
Some years ago I thought that future java tools would have
BSD ports that did not demand that we fetch them ourselves?
Now, among the few things left to rebuild/update is
diablo-jdk16. The
Lisa Casey wrote:
What's the quickest easiest way to change the IP address on the new 5.3
box? Should I do it via /stand/sysinstall or should I change it in
/etc/rc.conf and /etc/hosts (or do I need to do something with ifconfig -
which I'm least comfortable with).
Update rc.conf - I doubt
Hi Erik (and everyone else who has responded to this thread),
Thanks for all the help. I think switching the boxes will go pretty
smoothly.
Erik asked:
Regarding your previous questions: Are you installing bind from ports?
bind9 is in base on 5.x. It has slightly different config syntax.
Hi,
I want to replace a computer running FreeBSD 3.2 with one running FreeBSD
5.3. The 3.2 computer is currently used as a web server and a DNS server. I
have installed FreeBSD 5.3 and am currently adding the Apache2.50 port.
Once I add the Apache web server and Bind, can I then just copy
Hi,
I want to replace a computer running FreeBSD 3.2 with one running FreeBSD
5.3. The 3.2 computer is currently used as a web server and a DNS server.
I
have installed FreeBSD 5.3 and am currently adding the Apache2.50 port.
Once I add the Apache web server and Bind, can I then just copy
On Sep 15, 2005, at 11:47 AM, Lisa Casey wrote:
Hi,
I want to replace a computer running FreeBSD 3.2 with one running
FreeBSD 5.3. The 3.2 computer is currently used as a web server and
a DNS server. I have installed FreeBSD 5.3 and am currently adding
the Apache2.50 port.
Once I add
Lisa Casey wrote:
Hi,
I want to replace a computer running FreeBSD 3.2 with one
running FreeBSD 5.3. The 3.2 computer is currently used as
a web server and a DNS server. I have installed FreeBSD 5.3
and am currently adding the Apache2.50 port.
Once I add the Apache web server and Bind, can I
Hi,
I want to replace a computer running FreeBSD 3.2 with one running FreeBSD
5.3. The 3.2 computer is currently used as a web server and a DNS server. I
have installed FreeBSD 5.3 and am currently adding the Apache2.50 port.
Once I add the Apache web server and Bind, can I then just
Hi,
I posted earlier today about setting up a FreeBSD 5.3 box to replace a 3.2
box. I've got the 5.3 set up on a different IP address (for now) and apache
and bind seem to be working OK. All the web sites and DNS zone files are
transferred over. Tomorrow I need to change the IP address of this
On Thu, Sep 15, 2005 at 10:05:12PM -0400, Lisa Casey wrote:
What's the quickest easiest way to change the IP address on the new 5.3
box? Should I do it via /stand/sysinstall or should I change it in
/etc/rc.conf and /etc/hosts (or do I need to do something with ifconfig -
which I'm least
Lisa Casey wrote:
Hi,
I posted earlier today about setting up a FreeBSD 5.3 box to replace a 3.2
box. I've got the 5.3 set up on a different IP address (for now) and apache
and bind seem to be working OK. All the web sites and DNS zone files are
transferred over. Tomorrow I need to change the
Bob Hall [EMAIL PROTECTED] writes:
Make the changes in rc.conf so that the box will be configured correctly
then next time it is rebooted. To change the address without rebooting,
you'll have to use ifconfig. Do
For some of the variables in rc.conf, you can reactivate changes
using scripts in
Hi,
Last night before this morning, I was browsing fine
with kde's konqueror. I don't remember doing anything
about my system rather than dialing through ppp. This
morning, when I ppp to dial into internet... my
external modem established a successful
connection(because I can see the LED's are
Mark Jayson Alvarez wrote:
Hi,
Last night before this morning, I was browsing fine
with kde's konqueror. I don't remember doing anything
about my system rather than dialing through ppp. This
morning, when I ppp to dial into internet... my
external modem established a successful
Out of the ether, Mark Jayson Alvarez spewed forth the following bitstream:
But when I launch the konqueror and typed something
in the address bar and hit enter, it says Unknown
Host
Google, CNN, and a bunch of Akamized services were (are?) having problems
this morning.
Please try your
Hi list,
I've set up a DHCP server but I'd like to know
which address (from address pool) hasn't assigned
to any machine. Is there command line to accomplish
this.
PS. I use ISC-DHCP v.3 installed from ports.
TIA,
Pote
Hi,
Is there anyone who has run with success the Modem Alcatel Speedtouch
330 (USB) using the PPPOE, for FreeBSD 4.9?
Where can I find Alcatel Speedtouch 330 drivers or (ports) for FreeBSD
4.9 using the PPPOE?
I'm trying to connect this kind of Modem in my system FreeBSD 4.9, but
the only drivers
On Thu, Feb 19, 2004 at 12:01:29PM -, Godinho, Carla wrote:
Hi,
Is there anyone who has run with success the Modem Alcatel Speedtouch
330 (USB) using the PPPOE, for FreeBSD 4.9?
Where can I find Alcatel Speedtouch 330 drivers or (ports) for FreeBSD
4.9 using the PPPOE?
I'm trying to
On Thu, Feb 19, 2004 at 12:01:29PM -, Godinho, Carla wrote:
Hi,
Is there anyone who has run with success the Modem Alcatel Speedtouch
330 (USB) using the PPPOE, for FreeBSD 4.9?
Where can I find Alcatel Speedtouch 330 drivers or (ports) for FreeBSD
4.9 using the PPPOE?
I'm trying to
On Thu, Feb 19, 2004 at 12:01:29PM -, Godinho, Carla wrote:
Hi,
Is there anyone who has run with success the Modem Alcatel Speedtouch
330 (USB) using the PPPOE, for FreeBSD 4.9?
Where can I find Alcatel Speedtouch 330 drivers or (ports) for FreeBSD
4.9 using the PPPOE?
I'm trying to
On Thu, Feb 19, 2004 at 03:53:13PM +, Wayne Pascoe wrote:
On Thu, Feb 19, 2004 at 12:01:29PM -, Godinho, Carla wrote:
Hi,
Is there anyone who has run with success the Modem Alcatel Speedtouch
330 (USB) using the PPPOE, for FreeBSD 4.9?
Where can I find Alcatel Speedtouch 330
Message-
From: Wayne Pascoe [mailto:[EMAIL PROTECTED] On Behalf Of
Wayne Pascoe
Sent: quinta-feira, 19 de Fevereiro de 2004 15:53
To: Godinho, Carla
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: Alcatel Speedtouch 330 using PPPOE, how can I do it on
FreeBSD 4.9?
On Thu, Feb 19, 2004
On Thu, Feb 19, 2004 at 07:34:37PM -, Godinho, Carla wrote:
Yes did tried that link when installing de modem, but I get a protocol
error when connecting to ADSL. See the details bellow:
I'm having problems when trying to use the Modem Alcatel SpeedTouch 330
with the FreeBSD 4.9.
Hi Everybody ,
I heared in list and some sites that some times after makeworld
system can't boot . I wonder What FreeBSD Admins make to solve this problem
. Does possbile to prevent this problem ?! Any way ?!
Vahric
___
[EMAIL PROTECTED]
On Tue, Jan 13, 2004 at 01:34:25PM +0200, Vahric MUHTARYAN typed:
Hi Everybody ,
I heared in list and some sites that some times after makeworld
system can't boot . I wonder What FreeBSD Admins make to solve this problem
. Does possbile to prevent this problem ?! Any way ?!
What
]
Sent: Tuesday, January 13, 2004 2:24 PM
To: Vahric MUHTARYAN
Cc: [EMAIL PROTECTED]
Subject: Re: Whan can I do if OS does not boot after makeworld
On Tue, Jan 13, 2004 at 01:34:25PM +0200, Vahric MUHTARYAN typed:
Hi Everybody ,
I heared in list and some sites that some times after
On Tuesday 13 January 2004 07:02 am, Vahric MUHTARYAN wrote:
Hi ,
I did not make something now and I don't have a problem with makeworld. But
I red something in FreeBSD from scratch and I saw that some problem can
occur and after makeworld process OS is not openinig
Vahric
This is not
PROTECTED]
Subject: Re: Whan can I do if OS does not boot after makeworld
On Tuesday 13 January 2004 07:02 am, Vahric MUHTARYAN wrote:
Hi ,
I did not make something now and I don't have a problem with makeworld.
But
I red something in FreeBSD from scratch and I saw that some problem can
occur
On Tuesday 13 January 2004 09:31 am, Vahric MUHTARYAN wrote:
Did you ever have any problem about makeworld process ?!
I afraid of one day will come and I can't boot my FreeBSD
Vahric
For me, the trickiest part was understanding and executing 'mergemaster -i'
after 'make world'. Once I got a
[EMAIL PROTECTED] wrote:
Did you ever have any problem about makeworld process ?!
I afraid of one day will come and I can't boot my FreeBSD
Vahric
This is why the recommended update process is (in part):
# make buildworld
# make buildkernel
# make installkernel
Followed by a reboot into
: Whan can I do if OS does not boot after makeworld
On Tuesday 13 January 2004 07:02 am, Vahric MUHTARYAN wrote:
Hi ,
I did not make something now and I don't have a problem with makeworld.
But
I red something in FreeBSD from scratch and I saw that some problem can
occur and after
On Tue, 2004-01-13 at 07:55, Scott Mitchell wrote:
[EMAIL PROTECTED] wrote:
Did you ever have any problem about makeworld process ?!
I afraid of one day will come and I can't boot my FreeBSD
Vahric
This is why the recommended update process is (in part):
# make buildworld
# make
I acquired a Buslink 1394 Firewire 80GB hard drive, in which I would like to install
FreeBSD, to try it out. So far, except for Mandrake 9.1, none of the other Linux
distros have been able to find and install itself on the Firewire bus.
So now, this would give me /dev/hda for WindowsXP Pro,
49 matches
Mail list logo