date:20131006

Re: How we handle attacks?

2013-10-06 Thread Christopher Meng

Do we need some honeypots? ;)
___
infrastructure mailing list
infrastructure@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/infrastructure

Re: How we handle attacks?

2013-10-06 Thread Anshu Prateek

I guess you are talking about ssh access?

Most of these logins are automated bot attempts. On my personal servers,
one easy way I have found is changing the default port to something else
and that cuts down my lastb by almost 99%!


On Thu, Oct 3, 2013 at 5:50 PM, Miroslav Suchý  wrote:

> I see in log file of copr-fe-dev a lot of attempts to login as
> root/postgres/nagios/oracl/**test user. Well it is ~4000 attempts. So it
> depend on your definition of "lot of". But it caught my attention.
>
> Do we have some standard procedure how to handle it? Add that IPs to
> blacklist? Move ssh port to non standard number? Or should I just ignore
> them?
> --
> Miroslav Suchy, RHCE, RHCDS
> Red Hat, Software Engineer, #brno, #devexp, #fedora-buildsys
> __**_
> infrastructure mailing list
> infrastructure@lists.**fedoraproject.org
> https://admin.fedoraproject.**org/mailman/listinfo/**infrastructure
___
infrastructure mailing list
infrastructure@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/infrastructure

Re: How we handle attacks?

Re: How we handle attacks?

2 matches

Site Navigation

Mail list logo

Footer information