We use OSSEC, on Qmailtoaster, it autoblock password cracker and emails you every time the group of them hit your server 5+ times. We used this on 200 + servers with 1.4 million clients per day and it keeps us PCI compliant and get the jokers from brute forcing our sites.
http://www.ossec.net/ _____ From: Anderson Alves de Albuquerque [mailto:anderso...@gmail.com] Sent: Monday, January 18, 2010 7:11 PM To: qmailtoaster-list@qmailtoaster.com Subject: Re: [qmailtoaster] Re: erro with password I am want to know the files beacause I need to write my script. I need to block IP of the crackers. On Tue, Jan 19, 2010 at 12:04 AM, Eric Shubert <e...@shubes.net> wrote: Anderson Alves de Albuquerque wrote: If cracker try password in server with qmail toaster, What file log can I look? That depends what protocol cracker is trying to break in on. You'll typically see messages in the logwatch report. -- -Eric 'shubes' ---------------------------------------------------------------------------- ----- Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! ---------------------------------------------------------------------------- ----- Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com -- [], Anderson Alves de Albuquerque. --------------------------------------------------------------- E-mails: andersonalvesdealbuquerque#hotmail.com (replace # by @) andersonaa#gmail.com (replace # by @) ICQ: 73222660 ---------------------------------------------------------------
