Re: sudo ws root

To: debian-russian@lists.debian.org
Subject: Re: sudo ws root
From: Покотиленко Костик <casper@meteor.dp.ua>
Date: Thu, 18 Dec 2008 12:07:32 +0200
Message-id: <[🔎] 1229594852.4634.2.camel@casper.meteor.dp.ua>
Reply-to: casper@meteor.dp.ua
In-reply-to: <[🔎] 494A0259.6030802@gmail.com>
References: <[🔎] 493D6766.9020305@yandex.ru> <[🔎] 20081208183946.GH25098@work.uvw.ru> <[🔎] 493D6C1B.1040801@gmail.com> <[🔎] 493D9363.2000407@gmail.com> <[🔎] 493D991E.9060207@gmail.com> <[🔎] 20081209111705.3648ab1a@ibem> <[🔎] 20081209132012.GB22054@wagner.pp.ru> <[🔎] 1228843100.4315.34.camel@casper.meteor.dp.ua> <[🔎] 80334255@wizzle.medvedkovo.ran.pp.ru> <[🔎] 20081210090211.GB22538@work.uvw.ru> <[🔎] 91041785@wizzle.medvedkovo.ran.pp.ru> <[🔎] 1228905842.4590.15.camel@casper.meteor.dp.ua> <[🔎] 69606833@tigger.lan.cryptocom.ru> <[🔎] 1228927201.4590.75.camel@casper.meteor.dp.ua> <[🔎] 14214669@tigger.lan.cryptocom.ru> <[🔎] 20081217125611.3dcd238a@wind.itkm.ru> <[🔎] 4948D69B.8040109@generali.garant.ua> <[🔎] 8151229516522@webmail16.yandex.ru> <[🔎] 1229519108.4306.36.camel@casper.meteor.dp.ua> <[🔎] 494A0259.6030802@gmail.com>

В Чтв, 18/12/2008 в 10:57 +0300, Peter Teslenko пишет:
> Покотиленко Костик wrote:
> > Кстати, народ, давно хотел спросить. Есть ПО анализирующее логи того же
> > ssh и банящее ботов в iptables. Сам по себе анализ постоянный логов как
> > процесс у меня вызывает отвращение, может есть в виде плагинов или ещё
> > чего нечто, что по данным демонов (ssh, smtpd, etc) может делать
> > подобное (вызывать команды iptables), без нудного анализа логов?
> 
> Есть такое
> 
> Package: denyhosts
> State: not installed
> Version: 2.6-4
> Priority: optional
> Section: net
> Maintainer: Marco Bertorello <marco@bertorello.ns0.it>
> Uncompressed Size: 442k
> Depends: lsb-base (>= 3.1-10), python, python-central (>= 0.6.7)
> Conflicts: denyhosts-common, denyhosts-python2.3, denyhosts-python2.4
> Replaces: denyhosts-common, denyhosts-python2.3, denyhosts-python2.4
> Description: a utility to help sys admins thwart ssh crackers
>   DenyHosts is a program that automatically blocks ssh brute-force attacks by adding entries to /etc/hosts.deny. It will 
> also
>   inform Linux administrators about offending hosts, attacked users and suspicious logins.
> 
>   Syncronization with a central server is possible too.
> 
>   Differently from other software that do same work, denyhosts doesn't need support for packet filtering or any other 
> kind of
>   firewall in your kernel
> 
> Tags: admin::configuring, admin::logging, implemented-in::python, interface::daemon, protocol::ssh, role::program,
>        scope::utility, security::forensics

Видел, тоже анализатор логов. Говорят у него на одну функцию больше чем
у fail2ban.

-- 
Покотиленко Костик <casper@meteor.dp.ua>

Reply to:

References:
- sudo ws root
  - From: "russian-linuxoid@yandex.ru" <russian-linuxoid@yandex.ru>
- Re: sudo ws root
  - From: "Dmitry E. Oboukhov" <unera@debian.org>
- Re: sudo ws root
  - From: "Eugene V. Lyubimkin" <jackyf.devel@gmail.com>
- Re: sudo ws root
  - From: Stanislav Kruchinin <stanislav.kruchinin@gmail.com>
- Re: sudo ws root
  - From: "Eugene V. Lyubimkin" <jackyf.devel@gmail.com>
- Re: sudo ws root
  - From: Grey Fenrir <grey.fenrir@gmail.com>
- Re: sudo ws root
  - From: Victor Wagner <vitus@wagner.pp.ru>
- Re: sudo ws root
  - From: Покотиленко Костик <casper@meteor.dp.ua>
- Re: sudo ws root
  - From: Artem Chuprina <ran@ran.pp.ru>
- Re: sudo ws root
  - From: "Dmitry E. Oboukhov" <unera@debian.org>
- Re: sudo ws root
  - From: Artem Chuprina <ran@ran.pp.ru>
- Re: sudo ws root
  - From: Покотиленко Костик <casper@meteor.dp.ua>
- Re: sudo ws root
  - From: Artem Chuprina <ran@ran.pp.ru>
- Re: sudo ws root
  - From: Покотиленко Костик <casper@meteor.dp.ua>
- Re: sudo ws root
  - From: Artem Chuprina <ran@ran.pp.ru>
- Re: sudo ws root
  - From: "Denis B. Afonin" <chindi@chindi.su>
- Re: sudo ws root
  - From: Игорь Чумак <i.chumak@generali.garant.ua>
- Re: sudo ws root
  - From: George Shuklin <nge@narod.ru>
- Re: sudo ws root
  - From: Покотиленко Костик <casper@meteor.dp.ua>
- Re: sudo ws root
  - From: Peter Teslenko <smartchecker@gmail.com>

Prev by Date: Re: sudo ws root
Next by Date: Re: Какой правильный лазерный принтер?
Previous by thread: Re: sudo ws root
Next by thread: Re: sudo ws root
Index(es):
- Date
- Thread