[WBEL-users] iptables auto add baddies script?
Luke Scharf
lscharf@aoe.vt.edu
Wed, 29 Dec 2004 17:16:39 -0500
On Wed, 2004-12-29 at 17:04, Jan-Albert van Ree wrote:
> On Wed, Dec 29, 2004 at 04:20:49PM -0500, Jon Lewis wrote:
>
> > You people are doing this the wrong way around. Don't block the hosts you
> > think are "bad". Block everyone. Then allow just the IP ranges you
> > actually need to have access.
>
> I run 2 web/mail/dns servers with WBEL, your approach wouldn't do us much good.... something that disallows access after a certain amount of probes is probably the best thing you can do.
One option would be to put everything on a private network and require
folks to VPN in.
But, then, you have the same problem of people trying to guess the same
passwords against the VPN server as you do against every other service,
plus the inconvenience of making everyone VPN in.
Still tempting -- but in order to try it, I'd have to have many fewer
machines and a master key to the 3 academic buildings...
-Luke
--
Luke Scharf, Systems Administrator
Virginia Tech Aerospace and Ocean Engineering