> On Wed, 03 Aug 2005 07:22:16 -0500, Lonnie wrote: > > > Greeting All, > > > > I have a Fedora 3 server up and running and I have noticed various IP's > > in my logs trying to hack SSH, APACHE, or email for example and even > > though I am running the built-in firewall through the "setup" program, I > > would like to know if there is some additional application that I can > > add that I can blacklist, and whilelist IP from connecting to my server > > at all? > > > > I am sure that there is something out there, but not sure what you might > > recommend? > > I use swatch monitor logs and automatically add hackers to the firewall. One of the things that you might want to consider is whether or not you really need to have ssh available to the WAN. If so you can still limit access through hosts.allow to specific IPs and ranges. An interesting application for HTTPD is mod_security (which is available through Fedora Extras). I redirect hackers to: http://www.cybercrime.gov/reporting.htm with a grin. The best and most flexible application for blocking email is rbldnsd (see my signature for a link). -- Tired of spam? Do YOUR part: http://www.BoulderPledge.org Our DNSRBL - Eliminate Spam: http://www.TQMcube.com/spam_trap.htm RBLDNSD HowTo: http://www.TQMcube.com/rbldnsd.htm Multi-RBL Check: http://www.TQMcube.com/rblcheck.htm
