search.internet.com

Become a Marketplace Partner internet.commerce Be a Commerce Partner Linux Today Enterprise Linux Today Apache Today JustLinux.com Linux Planet PHPBuilder All Linux Devices Technology Jobs LinuxToday Newsletters Subscribe News Subscribe PR Subscribe Security internet.com IT Developer Internet News Small Business Personal Technology Search internet.com Advertise Corporate Info Newsletters Tech Jobs E-mail Offers

Current Newswire: openSUSE 11.2-- Incremental Updates, Plenty of Polish Microsoft, other rivals slam Google Chrome OS Intel Linux Graphics Shine With Fedora 12 Editor's Note: Do It Yourself "Cloud" Google Chrome OS: First looks, first impressions Kernel Log: Coming in 2.6.32 (Part 3) - Storage TV Mythos Renewed: MythTV 0.22 with Many Improvements Enhancing openSUSE 11.2: Adding Repositories and Packages A Northwest Nobel option? (Linus for the Nobel Peace prize) SECURITY: Cloud Computing Security Benefits, Risks and Recommendations Virtualization Architect The Computer Merchant, Ltd US-MA-Chelsea Post A Job | Post A Resume Security: A Low Intensity, Distributed Bruteforce Attempt Dec 2, 2008, 23 :31 UTC (2 Talkback[s]) (5161 reads) (Other stories by Peter N. M. Hansteen) [ Thanks to Peter N. M. Hansteen for this link. ] "Phase 1: “That's odd..." During the last few weeks, I noticed an anomaly in the authentication logs on one of my listening posts. There were a larger than usual number of ssh login attempts overall, a higher than usual number of attempts for non-existent user names as well as some failures for a few that actually exist as well... "Phase 2: Not your run of the mill screwup, the data say Repeated login attempts for non-existing users are nothing new (in fact the bruteforce avoidance section is one of the more popular parts of the PF tutorial), but I was a bit surprised to see the attempts actually reaching this machine, which is on a local network behind a PF gateway with a configuration that is in fact closely related to the one in the tutorial (and the book for that matter). Then looking at the log entries, I noticed a few more things: The attempts are never less than a minute apart, and the attempts from a single host are separated by much long intervals. The full data set I extracted from the point I started noticing those anomalies sum up to these figures can be found here, in case you want to look at it and draw you own conclusions." Complete Story Related Stories: Fake Unix and Linux Advisory - The /dev/null Vulnerability(Nov 17, 2008) Video: Mastering Iptables, part 2 (Oct 19, 2008) Turn Linux into Fort Knox: 10 Tools for a Safer Web Server(Oct 09, 2008) Cybersecurity Best Practice: Guilty Until Proven Innocent(Sep 09, 2008) Preventing Brute Force Attacks With Fail2ban On Fedora 9(Sep 01, 2008) SSH Key-based Attacks On Linux Hosts(Aug 27, 2008) Index Mode   |   Flat Mode   |   Thread Mode   |   Thread Flat     Talkback(s) Name  and Date   I saw this on my site too    Jeff Cobb Dec 3, 2008, 01:52:05     Known for Several Months    blackhole Dec 3, 2008, 10:44:49     Home | Search Talkbacks | Customize View    Top of Page   Enter your comments below: * Your Name: * Your Email Address: * Subject: CC: [will also send this talkback to an E-Mail address] * Comments: Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content. Fields marked with * are required!

All times are recorded in UTC. Linux is a trademark of Linus Torvalds. Powered by Linux, Apache and PHP Search: WebMediaBrands Corporate Info Legal Notices, Licensing, Permissions, Privacy Policy. Advertise | Newsletters | Shopping | E-mail Offers | Freelance Jobs Solutions Whitepapers and eBooks Microsoft Articles: Visual Studio 2010 Adobe Article: Adobe Helps PHP Developers Create Rich Internet Applications Microsoft Whitepaper: How Windows Server 2008 R2 Helps Optimize IT and Save You Money Adobe Article: Java Developers Finding a Home at Adobe Flex IBM Articles: A Smarter Business Needs Smarter Technology Intel Xeon Processor Increases Server Efficiency and Capabilities Intel Tech Brief: Automated Energy Efficiency for the Intelligent Enterprise Oracle Whitepapers - Innovation for IT Leaders Avaya Article: Communication-Enabled Mashups--Empowering Both Business Owners and IT Internet.com eBook: IT Manager's Guide to Social Networking Internet.com eBook: Get Ready for Windows 7 Microsoft Article: Expression Web 3--New Features for PHP Developers Whitepapers: Manage Your Business Infrastracture with IBM Whitepaper: Maximize Your Storage Investment with HP Internet.com eBook: Becoming a Better Project Manager Microsoft Article: Stress Free and Efficient Designer/Developer Collaboration MORE WHITEPAPERS, EBOOKS, AND ARTICLES Webcasts Webcast: Connecting PHP to Microsoft Technologies Video: Microsoft Partner Program Benefits Video: Windows Azure Debugging Tips SAP BusinessObjects Webcast: Unlock the Power of Reporting with Crystal Reports IBM Webcast: Speed Business Innovation with Reduced Cost and Risk Video: Deploy Applications on Windows Azure MORE WEBCASTS, PODCASTS, AND VIDEOS Downloads and eKits Download: Microsoft Visual Studio 2010 Beta 2 Downloads & Free Trials: Microsoft's New Efficiency Resource Center Get the Windows 7 SDK Free Trial: Red Gate SQL Backup Pro 6 Iron Speed Designer Application Generator MORE DOWNLOADS, EKITS, AND FREE TRIALS Tutorials and Demos Internet.com Hot List: Get the Inside Scoop on the Hottest IT and Developer Products All About Botnets MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES