From owner-freebsd-questions@FreeBSD.ORG Fri Jun 18 17:27:34 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C49A01065675 for ; Fri, 18 Jun 2010 17:27:34 +0000 (UTC) (envelope-from SamanKaya@netscape.net) Received: from imr-ma05.mx.aol.com (imr-ma05.mx.aol.com [64.12.100.31]) by mx1.freebsd.org (Postfix) with ESMTP id 84FB18FC1E for ; Fri, 18 Jun 2010 17:27:34 +0000 (UTC) Received: from mtaout-mb06.r1000.mx.aol.com (mtaout-mb06.r1000.mx.aol.com [172.29.41.70]) by imr-ma05.mx.aol.com (8.14.1/8.14.1) with ESMTP id o5IHROqK026453; Fri, 18 Jun 2010 13:27:29 -0400 Received: from [172.16.0.3] (unknown [212.156.209.87]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mtaout-mb06.r1000.mx.aol.com (MUA/Third Party Client Interface) with ESMTPSA id 85428E00008B; Fri, 18 Jun 2010 13:27:28 -0400 (EDT) Message-ID: <4C1BAC7C.7070504@netscape.net> Date: Fri, 18 Jun 2010 20:27:24 +0300 From: Kaya Saman User-Agent: Mozilla/5.0 (X11; U; Linux i686 (x86_64); en-US; rv:1.9.1.8) Gecko/20100227 Lightning/1.0b1 Thunderbird/3.0.3 MIME-Version: 1.0 To: glarkin@FreeBSD.org References: <367428.93212.qm@web51108.mail.re2.yahoo.com> <4C1B67B2.8000309@nrdx.com> <4C1B90CE.4020509@netscape.net> <4C1B9549.4080801@gmail.com> <4C1B95AF.4090200@netscape.net> <4C1B97D3.7080704@FreeBSD.org> In-Reply-To: <4C1B97D3.7080704@FreeBSD.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit x-aol-global-disposition: G X-AOL-SCOLL-SCORE: 0:2:409420288:93952408 X-AOL-SCOLL-URL_COUNT: 0 x-aol-sid: 3039ac1d29464c1bac800235 X-AOL-IP: 212.156.209.87 Cc: freebsd-questions@freebsd.org Subject: Re: system is under attack (what can I do more?) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Jun 2010 17:27:34 -0000 On 06/18/2010 06:59 PM, Greg Larkin wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Kaya Saman wrote: > >> On 18/06/2010 18:48, Glen Barber wrote: >> >>> Hi, >>> >>> On 6/18/10 11:29 AM, Kaya Saman wrote: >>> >>>> [...] >>>> >>>>> Look at ports/security/sshguard and ports/security/bruteblock. >>>>> >>>>> I use sshguard with ipfilter, but it works with pf and ipfw as well. >>>>> It is very simple to set up and gets the job done. >>>>> >>>>> >>>> Hi just wanted to say thanks for stating this as I'm also looking for a >>>> BSD version of fail2ban which I couldn't find in the FreeBSD ports >>>> collection...... >>>> >>>> >>> security/py-fail2ban >>> >>> Regards, >>> >>> >> Ah...... >> >> Thanks!! :-) >> >> Regards, >> >> Kaya >> > The "make search" target is useful for finding ports when you only have > a keyword or name to go on: > > # cd /usr/ports/ > # make search > The search target requires a keyword parameter or name parameter, > e.g.: "make search key=somekeyword" > or "make search name=somekeyword" > # make name=fail2ban search > Port: py26-fail2ban-0.8.4 > Path: /usr/ports/security/py-fail2ban > Info: scans log files and bans IP that makes too many password failures. > Maint: tony@pc-tony.com > B-deps: python26-2.6.5 > R-deps: python26-2.6.5 > WWW: http://www.fail2ban.org/wiki/index.php/Main_Page > > Hope that helps, > Greg > - -- > Greg Larkin > > http://www.FreeBSD.org/ - The Power To Serve > http://www.sourcehosting.net/ - Ready. Set. Code. > http://twitter.com/sourcehosting/ - Follow me, follow you > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.7 (MingW32) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iD8DBQFMG5fT0sRouByUApARArz0AJ9cAxdoR9jAXdmliiEECguLYDrDbgCeJjCP > /2niys4x+eXgooHg3uOf1gw= > =GycM > -----END PGP SIGNATURE----- > > Thanks Greg!! That is useful and will probably save me a lot of digging in the future when attempting to get other things migrated over from Linux and/or Solaris etc :-) Regards, Kaya