From owner-freebsd-questions@FreeBSD.ORG Sat Jan 13 12:42:02 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 38C2D16A416 for ; Sat, 13 Jan 2007 12:42:02 +0000 (UTC) (envelope-from anujhere@gmail.com) Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.228]) by mx1.freebsd.org (Postfix) with ESMTP id D3C5C13C442 for ; Sat, 13 Jan 2007 12:42:01 +0000 (UTC) (envelope-from anujhere@gmail.com) Received: by wx-out-0506.google.com with SMTP id s18so1065149wxc for ; Sat, 13 Jan 2007 04:42:01 -0800 (PST) DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:subject:from:to:cc:in-reply-to:references:content-type:date:message-id:mime-version:x-mailer; b=lSpzzAPHjFGCWtXUb1cRLgzvAsDfBXM0JbobTbCpplWg9NtzRTTPi78ULeZTBhTNk2Lr3JCYzOMEpN/EOwCl8lvQlWlBjjaCrabD9zfI3bCImeDzP3tlmDr3y6dn3CEMnqH2w1olSduABElo5SJMb79GzZTM9H5QvDbAIbkeDPU= Received: by 10.90.118.12 with SMTP id q12mr1399371agc.1168690446071; Sat, 13 Jan 2007 04:14:06 -0800 (PST) Received: from ?59.94.131.189? ( [59.94.131.189]) by mx.google.com with ESMTP id 32sm4827208agc.2007.01.13.04.13.59; Sat, 13 Jan 2007 04:14:05 -0800 (PST) From: Anuj Singh To: VeeJay In-Reply-To: <2cd0a0da0701121343g7fa2535fv4a7b201f5a03aff2@mail.gmail.com> References: <2cd0a0da0701121343g7fa2535fv4a7b201f5a03aff2@mail.gmail.com> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-bE2ymV4HBcPqOrjMXL4S" Date: Sat, 13 Jan 2007 17:43:31 +0530 Message-Id: <1168690412.9059.10.camel@fedora.linux> Mime-Version: 1.0 X-Mailer: Evolution 2.2.2 (2.2.2-5) Cc: FreeBSD-Questions Subject: Re: Please Help! How to STOP them... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 13 Jan 2007 12:42:02 -0000 --=-bE2ymV4HBcPqOrjMXL4S Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hiee, Greetings,=20 I tried port knocking thing with Linux box, Port knocking is a technique whereby attempting to connect to port A enables access to port B from that same host. Port knocking can be the solution for this. Tried with Linux iptables only, I wonder if the similar thing can be done on beastie IPF, I am very new with FreeBSD. But port knocking on Linux I tried and worked well. For a basic layout I am giving this link(this is based on Iptables - but can give a basic layout for implementing the same thing on Beastie). http://www.soloport.com/iptables.html =20 Anuj On Fri, 2007-01-12 at 22:43 +0100, VeeJay wrote: > I am reading many hundred lines similar to below mentioned? >=20 > Could you please advise me what to do and how can I make my box more secu= re? >=20 > Jan 9 17:54:42 localhost sshd[5130]: reverse mapping checking getaddrinf= o > for bbs-83-179.189.218.on-nets.com [218.189.179.83] failed - POSSIBLE > BREAK-IN ATTEMPT! > Jan 9 17:54:42 localhost sshd[5130]: Invalid user sysadmin from > 218.189.179.83 >=20 --=-bE2ymV4HBcPqOrjMXL4S Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQBFqMzrKJKFPNVb52QRAk36AJ9JsMvTwAP5ZiBt6WeHLihcz/m1uACfQJEq ZKItttZfGysIHqJBjoEQz+w= =fx7T -----END PGP SIGNATURE----- --=-bE2ymV4HBcPqOrjMXL4S--