Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Brute force attacks

from [Eric Stacey] Network Security [Permanent Link]
Subject: Re: Brute force attacks
Date: Thu, 31 May 2007 15:15:29 -0500 
If you're talking about ssh brute-force attacks, you can stop/lessen
them a couple ways.

- Use key-based authentication only.
- Implement something like DenyHosts (
http://denyhosts.sourceforge.net/ ) and don't typo too many times (and
have a backup way in).

-Eric

On 5/31/07, Ali, Saqib < docbook.xml@gmail.com> wrote:
> Brute force attack are common. I get tons of them every day. There is
> not much you can do.
>
> saqib
> http://www.full-disk-encryption.net
>
> On 5/31/07, Mohamad Mneimneh <Mohamad.Mneimneh@dargroup.com > wrote:
> > Hi List,
> >
> > I've been experiencing brute force dictionary attacks from various
> > sources against my gateway. The attacker is trying all kinds of
> > username/password combinations to get in.
> >
> > I have traced the source IP addresses on internet authorities such as
> > Ripe, Arin & Apnic; the feedback I get is that "Country is really world
> > wide". I then traced the IPs using visual route, and saw that their
> > locations vary widely; some of them are in the US, some in China, others
> > in Poland...
> >
> > What are my options in such a case? Have you ever experienced such a
> > behavior? And what are the best practices that apply?
> >
> > Thank you,
> >
> > -Mohamad.
> >
>
>
> --
> Saqib Ali, CISSP, ISSAP
> http://www.full-disk-encryption.net
>



[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Private IP Address from Exchange, Danux
Next by Date:  Re: CCSP Self-Study, Sajed Naseem
Previous by Thread:  Re: Brute force attacks, Ali, Saqib
Next by Thread:  Re: Brute force attacks, David Bergert
Indexes:  [Date] [Thread] [Top] [All Lists]