search for: blockhosts

I'm trying (and failing) to use BlockHosts to stop thousands of FTP login attempts. BlockHosts works fine with ssh but not with vsftp. I've found the problem but not the solution at http://www.aczoom.com/cms/forums/blockhosts/vsftp-hanging Can anyone could help with either getting BlockHosts to work or suggesting another method?

Just in case anyone is using Blockhosts (http://www.aczoom.com/blockhosts/) with their Linux servers and Asterisk here are the rules necessary to block invalid users: "asterisk-NoPeer": r'Registration from .* failed for \'{HOST_IP}\' - No matching peer found', "asterisk-NoAuth": r'Registration f...

...has been against vsftpd, on systems that I can't easily control vs. putting strict limits on ssh. We simply have too many users entering from too many networks many with dynamic IP addresses. Enter.... thinking about LIDS or Log Based Intrusion Detection. I've run across four systems. Blockhosts, DenyHosts, fail2ban and OSSEC. DenyHosts apparently only works with ssh, so I've discounted using that. Is anyone using one of these or something else that I've missed. At present, I'm leaning towards OSSEC for several reasons. First it seems very robust. Second, you can set up a s...

just wanted to get some feedback from the community. Over the last few days I have noticed my web server and email box have attempted to ssh'd to using weird names like admin,appuser,nobody,etc.... None of these are valid users. I know that I can block sshd all together with iptables but that will not work for us. I did a little research on google and found programs like sshguard and

Hi, In last one week I have seen two servers of our organization successfully hacked and some other under attack from some other IP addresses. We would block one IP address on our firewall and after a few hours, they would start getting hits from some another IP address. When I checked them on whois.net, they all were from Amsterdam. Surprisingly, I once had similar attack in the past and it was