Date: Fri, 26 Jan 2007 13:07:22 -0600 From: Kevin Kinsey <kdk@daleco.biz> To: David Banning <david+dated+1170267615.a090fc@skytracker.ca> Cc: questions@freebsd.org Subject: Re: thwarting repeated login attempts Message-ID: <45BA516A.7070402@daleco.biz> In-Reply-To: <20070126182013.GA10551@skytracker.ca> References: <20070126182013.GA10551@skytracker.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
David Banning wrote: > I have installed denyhosts from the ports to stop ssh attacks, but > I have discovered a vulnerability, that is new to me. Denyhosts > does not seem to notice FTP login attempts, so the cracker can > attempt to login via FTP, 1000's of times until he finds a > login/password combination. > Pardon the stupid question, but I'm assuming it's necessary that you run ftpd? We block ftpd at the firewall to any machines outside the LAN. Anyone who needs FTP access uses a client that's capable of using sftp instead, and logs in with their SSH credentials. > Once he has a login/password combo, he can simple login via ssh, > (provided that user has a shell account). > > Is there anyway to block multiple FTP login attempts? > Kevin Kinsey -- Make it myself? But I'm a physical organic chemist!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?45BA516A.7070402>