[mythtv-users] Securing mythweb
Kevin Ross
kevin at familyross.net
Wed Feb 10 19:18:11 UTC 2010
> From: Michael T. Dean
> Sent: Wednesday, February 10, 2010 10:01 AM
>
> On 02/10/2010 10:46 AM, Mike Perkins wrote:
> > Not going to work. The bad guys figured this out, oh, maybe a year
> > ago. Now, each host on their botnet tries *once* each with a password
> > attempt before moving on. This means that you have plenty of single,
> > unique IP addresses hammering your firewall all day. It gets old real
> > quick.
>
> fwknop ftw!
>
> (hiding your open SSH port on a different port is the obscurity
> approach
> to security and port knocking is broken)
>
> Mike "The fwknop diet: I lost over 2 Gigabytes of btmp when I switched
> to fwknop--you can too" Dean
I must be lucky then. I've never seen any such intrusion attempts in my
logs. Fail2ban has worked well for me.
I was about to recommend port knocking in that case, but apparently that
doesn't work anymore either. I just looked at fwknop, it looks very cool.
Thanks!
-- Kevin
More information about the mythtv-users
mailing list