Archive for January, 2008
Protectie impotriva nmap folosind fail2ban
Avem nevoie de doua pachete: scanlogd si fail2ban. # apt-get install scanlogd # nmap 192.168.0.1 tail /var/log/syslog Jan 8 11:37:05 naboo scanlogd: 192.168.0.2 to 192.168.0.1 ports 80, 53, 443, 25, 636, 22, …, f??p?uxy, TOS 00, TTL 64 @11:37:05 Observam ca scanlogd a detectat scanarea Ne trebuie versiunea 0.8.1 pentru a avea optiunea iptables-allports. Pachetul [...]