Results 1 to 6 of 6
-
10-15-2000, 07:28 PM #1Web Hosting Master
- Join Date
- May 2000
- Location
- Montreal, Quebec, Canada
- Posts
- 917
Does anyone have a script that will monitor the /var/log/secure and the /var/log/messages files and log the ip's of attempts to connect faster than once every second?
I am having a lot of people attempting to connect to my ftp server (anonymously) and also through telnet and I want to set up a script that will just add their ip's to my /etc/hosts.deny file so I don't have to worry about them again.
It gets annoying having to browse through 200 attempts from the same ip.
Is it just me or do most illegal attempts come from Europe?
Any ideas?
0
-
11-01-2001, 11:24 PM #2Web Hosting Guru
- Join Date
- Feb 2001
- Posts
- 313
portsentry does. I am sure if you want to add them manually thru a web interface its easy to create a script to do so.
0
-
11-02-2001, 12:10 AM #3Web Hosting Master
- Join Date
- May 2000
- Location
- Montreal, Quebec, Canada
- Posts
- 917
Wow, I posted that over a year ago !!
Where did you dig that one up0
-
11-02-2001, 01:09 AM #4Web Hosting Guru
- Join Date
- Oct 2001
- Posts
- 264
WOW hehe maybe he needs post count boost
eat me0
-
11-02-2001, 11:39 AM #5Web Hosting Master
- Join Date
- Dec 2000
- Location
- Lowlands
- Posts
- 718
Originally posted by tymonhall
portsentry does. I am sure if you want to add them manually thru a web interface its easy to create a script to do so.
Portsentry does that? I don't think so.0
-
11-02-2001, 11:53 AM #6Retired Moderator
- Join Date
- Sep 2000
- Location
- New York/USA
- Posts
- 1,691
tabernack posted that when he was a newbie
anyway, locking thread..0