Date: Fri, 26 Jan 2007 17:29:27 -0500 From: "David Banning" <david@skytrackercanada.com> To: Bill Moran <wmoran@collaborativefusion.com>, questions@freebsd.org Subject: Re: thwarting repeated login attempts Message-ID: <20070126222805.M6818@skytrackercanada.com> In-Reply-To: <20070126150237.e2192773.wmoran@collaborativefusion.com> References: <20070126182013.GA10551@skytracker.ca> <20070126150237.e2192773.wmoran@collaborativefusion.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> > I have installed denyhosts from the ports to stop ssh attacks, but > > I have discovered a vulnerability, that is new to me. Denyhosts > > does not seem to notice FTP login attempts, so the cracker can > > attempt to login via FTP, 1000's of times until he finds a > > login/password combination. > > We refuse to run ftp because it's nearly impossible to secure. so that's what I have decided - and went with sftp exclusively. thanks -
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070126222805.M6818>