[CentOS] [WTA] Automatically blocking on failed login

Tue May 25 07:22:39 UTC 2010
Sorin Srbu <sorin.srbu at orgfarm.uu.se>

>-----Original Message-----
>From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On Behalf
>Of David Suhendrik
>Sent: Monday, May 24, 2010 6:55 PM
>To: CentOS mailing list
>Subject: [CentOS] [WTA] Automatically blocking on failed login
>
>Hello All,
>I had problems with the security server, the server is frequently attacked 
>using
>bruteforce attacks. Is there an application that can perform automatic 
>blocking when
>there are failed login to the ports smtp, pop3 port, and others?

Why don't you try the Smoothwall firewall appliance and its Guardian Active 
Response (GAR)-mod, and set this up around your perimeter?

GAR is able to add temporary firewall rules to drop connection 
attempts/attacks under a configurable period of time and works in conjunction 
with Snort.

-- 
/Sorin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5110 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos/attachments/20100525/e15ba0c3/attachment-0005.bin>