On Fri, 2 Feb 2007, Chuck Hast wrote:
> On 2/2/07, Todd Patton <sail@acpdata.com> wrote:
>> I run a vsftp server for several users and clients of my work and I keep
>> getting hits for account "administrator" password <guess>. These usually
>> happen all night long from Asia Pacific networks, until I get to work in
>> the morning and add the ip-address to the firewall black list. This just
>> annoys the hell out of me. Is there a way to automatically add an ip
>> address to the host.deny file when someone tries to log into ftp using
>> "administrator" as a user name? Any suggestions on automatically
>> blacklisting these obvious scripts?
>
> If your users are a small number of people you might think about using a
> different port if you ftp server will allow you to change the port it
> listens on.
If you don't have many users you might try a whitelist too.
--
-eben QebWenE01R@vTerYizUonI.nOetP royalty.no-ip.org:81
Two atoms are walking along. Suddenly, one
stops. The other says, "What's wrong?" "I've lost
an electron." "Are you sure?" "I'm positive!"
-----------------------------------------------------------------------
This list is provided as an unmoderated internet service by Networked
Knowledge Systems (NKS). Views and opinions expressed in messages
posted are those of the author and do not necessarily reflect the
official policy or position of NKS or any of its employees.
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 15:11:41 EDT