Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Linux
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Detecting Brute-Force and Dictionary attacks

from [Joe Vieira] Network Security [Permanent Link]
Subject: RE: Detecting Brute-Force and Dictionary attacks
Date: Thu, 19 Oct 2006 10:45:07 -0400 
If you just want to identify logon attempts just pay attention to your 
logwatch/ /var/log/secure or wherever you have it logging, if you want to deny 
access I recommend an iptables rule based off quick connections to port 22.  If 
you want to lock out I would look at pam_tally.  

Feel free to ask questions about any of these.

Joe Vieira, GCIH
UNIX System Administrator
Clark University
Information Technology Services
508.793.7287
 

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On 
Behalf Of Shashi Kanth Boddula
Sent: Wednesday, October 18, 2006 6:02 AM
To: focus-linux@securityfocus.com
Cc: shashi.boddula@oracle.com
Subject: Detecting Brute-Force and Dictionary attacks

Hi All,  

I am looking for a good tool to detect brute-force and dictionary attacks on 
user accounts on a Linux system . The tool should also have the intelligence to 
differntiate between user mistakes and actual brute-force/dictionary attacks 
and reduce the false positives. SuSE/RedHat included security tools are not 
helping in this case . 

Please , anyone knows any third party security tool or any opensource security  
tool which solves my problem ?

Thanks & Regards,
Shashi Kanth,CISSP
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Detecting Brute-Force and Dictionary attacks, John Forristel (SunGard-Chico)
Next by Date:  Re: Detecting Brute-Force and Dictionary attacks, Cor Gest
Previous by Thread:  Re: Detecting Brute-Force and Dictionary attacks, Jason Nicholls
Next by Thread:  Re: Detecting Brute-Force and Dictionary attacks, Manuel Arostegui Ramirez
Indexes:  [Date] [Thread] [Top] [All Lists]