[Tfug] vsftpd security

bigj at flatwan.net bigj at flatwan.net
Wed Feb 14 08:34:02 MST 2007


This sounds like it might be a good solution:

http://www.webhostgear.com/60.html

I use it on my web hosting server. Ensure you have IPtables installed,
tell the programs what ports you want to allow in and out and which log
files to scan periodically for failed attempts and it does the rest.

It does not however remove the blocked IPs after a while. You would need
to edit the deny_hosts.txt file and remove those. They have commented time
stamps along with what service they attempted above each IP.

--
Jon

> I found some idiot from an external ip address "banging on my door" and
> trying a dictionary attack.
>
> I added his ip address to the deny list in the router to stop him.
>
> I have vsftpd running on the machine and have it checking attempted
> logins against a user list and denying them if they are not on the list.
>
> What I would like to do, is if they guess the right user name, give them
> one attempt at the password then lock them out for 30 minutes.  I use
> very good passwords of letters, numbers, and punctuation.
>
> Any quick way to do this?  This is on a server running Debian sarge.
>
> George Cohn
>
> _______________________________________________
> Tucson Free Unix Group - tfug at tfug.org
> Subscription Options:
> http://www.tfug.org/mailman/listinfo/tfug_tfug.org
>





More information about the tfug mailing list