Dear list members,
I want to offer my iptables dump so that everybody who's interested can use
it to fill up the firewall with the "usual suspects". My system basically
runs just TOR and SSH, so it's not a big surprise that the file contains
almost only ip's which attacked SSH.
Iptables is f
Dear list members,
My iptables dump, as promised (v4). Updated every hour and available as
long as my relay is alive ;-)
I run a pretty tight ship, just one ssh user and harsh fail2ban settings.
All these listed IP's are considered to be "the usual suspects".
Please feel free to use it, sho
On 11/11/14 02:03, Sebastian Urbach wrote:
Dear list members,
My iptables dump, as promised (v4). Updated every hour and available as
long as my relay is alive ;-)
I run a pretty tight ship, just one ssh user and harsh fail2ban
settings. All these listed IP's are considered to be "the usual s
Hi,
Thank you for catching the cert problem, i will fix this soon.
Please use the following instead:
https://www.ccc-hanau.de/~sebastian/rules.v4
Sorry.
--
Mit freundlichen GrĂ¼ssen / Sincerely yours
Sebastian Urbach
-
Definition of Tor:
10% luck, 20% s
Sebastian, how do you distinguish between the usual low level noise of
ssh brute force bots out there from more invasive attacks?
Because this list is most likely just a bunch of internet background noise.
Honestly, the safest thing to do is to NOT USE PASSWORD BASED LOGINS.
But what would be eve
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
> Honestly, the safest thing to do is to NOT USE PASSWORD BASED
> LOGINS.
Amen.
I wrote a script to scan the Tor network for password-based login
availability. If I have the time and no one beats me to it, it'll lead
to a site that warns relay oper
On November 15, 2014 2:33:23 PM Libertas wrote:
Hi,
> Honestly, the safest thing to do is to NOT USE PASSWORD BASED
> LOGINS.
Im aware of that.
I wrote a script to scan the Tor network for password-based login
availability. If I have the time and no one beats me to it, it'll lead
to a site
On November 15, 2014 1:53:50 PM eric gisse wrote:
Hi,
Sebastian, how do you distinguish between the usual low level noise of
ssh brute force bots out there from more invasive attacks?
There is a bunch of other software (ids etc.) for that.
Because this list is most likely just a bunch of i
