Monday, August 10, 2009

Avoid ssh attacks

If you ever look at you security logs and found something like

sshd[18561]: Failed password for invalid user nagios from port 47771 ssh2

This a brute force attack to you server, yes there are some people with scripts that can be found on the net, that just try to login to you sever using a dictionary of common used users and password, so how do we avoid this, you can install denyhosts script you can download it from or if using Fedora just do yum install denyhosts

After installation remember to set it up to start and set it to start on the next boot.


service denyhosts start


chkconfig denyhosts on

How it works, it read the secure logs of your sever and watch for the host attacking your system, and the user, then it update the info on the /etc/hosts.deny file on your system so the services will not respond to this host attack again.

How ever there are more options to secure your sever using this script, for those please read

This is cool right. Enjoy.

Giving a little .. to make something big.

Been around GNU/Linux for several years, learning, showing the advantage of Free Software, and more important enjoin my self with all this free tools, I was wandering how can we contribute to this free software community, some projects has donations links, but if you want to help out and you don't have the computer skills or the money to give away, what you could do?

Well, is right for you, no need of advance skills, just join, and there are many projects and ways to contribute, of course if your advance coder you can join those groups too, but more important is that is open to any one. You can join to be at events, participate on improvements, help others on the use of Free Software. Every one is welcome, programmers , sysadmins, graphic designers, people persons, translators and some other projects.

So don't miss the opportunity to give something to the community that give you lot of things for free.