Re: how to find trace of attacks

To: debian-user@lists.debian.org
Subject: Re: how to find trace of attacks
From: Daryl Styrk <darylstyrk@gmail.com>
Date: Wed, 31 Dec 2008 12:17:04 -0500
Message-id: <[🔎] 495BA910.60601@gmail.com>
In-reply-to: <[🔎] 20081231145026.GC4132@blitz.hooton>
References: <[🔎] 46688cb90812292324h1d2779dcs5982fd30393b45cd@mail.gmail.com> <[🔎] 880dece00812310157m6883c58di174b272fc09b7c31@mail.gmail.com> <[🔎] 495B657F.9040606@gmail.com> <[🔎] 20081231145026.GC4132@blitz.hooton>

Douglas A. Tutty wrote:
> On Wed, Dec 31, 2008 at 01:28:47PM +0100, Abdelkader Belahcene wrote:
>> I am simpler user on laptop, with ssh server running. Ther is no 
>> important data on my laptop!!!
> 
> Curious.  Why any server running on a laptop?  Do you limit the ssh to
> rsa/dsa or do you allow passwords?  IOW, how have you hardened up the
> ssh server?
> 
> Doug.
> 
> 

fail2ban
knockd
knocker
denyhosts

http://www.debian-administration.org/articles/187

http://www.howtoforge.com/preventing_ssh_dictionary_attacks_with_denyhosts

Look over those..

Reply to:

Follow-Ups:
- Re: how to find trace of attacks
  - From: "Jeff Soules" <soules@gmail.com>

References:
- how to find trace of attacks
  - From: "abdelkader belahcene" <abelahcene@gmail.com>
- Re: how to find trace of attacks
  - From: "Dotan Cohen" <dotancohen@gmail.com>
- Re: how to find trace of attacks
  - From: Abdelkader Belahcene <abelahcene@gmail.com>
- Re: how to find trace of attacks
  - From: "Douglas A. Tutty" <dtutty@vianet.ca>

Prev by Date: Re: Remove noatun also removes kde?
Next by Date: Re: Flash, konqueror
Previous by thread: Re: how to find trace of attacks
Next by thread: Re: how to find trace of attacks
Index(es):
- Date
- Thread