Muffinresearch Labs by Stuart Colville

Suspect SSH activity in server logs | Comments (0)

Posted in Linux/Unix on 31st August 2004, 7:40 pm by Stuart

Having seen a load of failed attempted SSH logins for the Linux boxes I look after, I have locked down what IP addresses SSHD accepts using iptables.

The failed attempts are trying to log in using GUEST/GUEST, ADMIN/ADMIN and other various combinations with no password. It seems like these are pretty lightweight attempts, but unless you have a reason to do otherwise, locking down access to SSH is probably a good idea!

Here’s how to do this with iptables:

-A RH-Lokkit-0-50-INPUT -s xxx.xxx.xxx.xxx -p tcp --dport 22 -j ACCEPT

Replace xxx.xxx.xxx.xxx with the IP address of the box you wish to allow to connect to the server you are securing.

Post Tools

Comments: Add yours







XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>



Standalone mac battery charger|(0)

Got a spare mac battery? I’ve often wondered why up until now no-one’s produced a standalone charger so that you can charge batteries without having to plug them into the mac. Fortunately Fastmac.com have produced a standalone charger that allows you to do just that. and it’s compatible with iBooks, Powerbooks, macbooks and Macbook Pros. It’s also 110/200v. Exactly what I was looking for!

Django Admin Ominigraffle Stencil|(0)

Colleague Alex Lee has created a nice stencil for omingraffle with the Django Admin UI components, perfect for wireframing customised admin screens. For more details and to download the stencil see Alex’s Blog csensedesign.co.uk

Photos on Flickr

© Copyright 2004-08 Stuart Colville, all rights reserved. May contain traces of Muffin. Powered by WordPress. Hosting by 1&1 This page was baked in 0.704s.