|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] reduction of brute force login attempts via SSHthrough iptables --hashlimit
From: Gary Leons (tastytastybeef
googlemail.com)
Date: Thu Mar 02 2006 - 10:40:25 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 3/2/06, GroundZero Security <fdg-0.org> wrote:
> Well i dont want to destroy your happy time where you can feel superior, but
> if you would read the manpage of lastb you would notice that this approach wont work at all.
> lastb just shows successfull logins! not all the attempted logins....we discussed that before though,
> so better pay attention next time.
Holy crap, you must be the dumbest man alive. I really hope nobody has
ever hired you for any security related work, if they have, I would
advise them to get a second opinion or third party audit of any code
provided.
If you had scrolled down 20 LINES in the man page, you wold have seen
"Lastb is the same as last, except that by default it shows a log of
the file /var/log/btmp, which contains all the bad login attempts.",
maybe you have bad eyesight, let me blow that text up for you: BAD
LOGIN ATTEMPTS, ok? clear now? good.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]