[XCSSA] Logging & dynamic firewall program(s)
xcssa@xcssa.org
xcssa@xcssa.org
Sat, 27 Oct 2007 01:43:24 -0500
On Thursday 25 October 2007 11:49:29 xcssa-admin@xcssa.org wrote:
> Why not just something like http://www.rickk.com/sslwrap/ ?
That's not a fit for what we're talking about... (IIRC, it was
stopping/blocking brute force attempts on server daemons.. not encryption
wrappers). Maybe you misunderstood from Nate's post about libwrap.
BTW.. This is an anonymized list.. so you need to post your name/handle if you
expect to carry on an intelligent conversation on here (that is.. unless
you're just a list-troll).
Tweeks
> >
> On 10/24/07, xcssa-admin@xcssa.org <xcssa-admin@xcssa.org> wrote:
> > On Wednesday 24 October 2007 01:39:06 xcssa-admin@xcssa.org wrote:
> > > You can see if dovecot is compiled to use tcpwrappers using ldd.
> > > If you see it linking against libwrap then it is just a matter of
> > > sorting out what the programs name needs to be for the config file.
> > >
> > > Nate
> > >
> > >
> > >
> > > Whew! Thanks for the suggestion Nate - but that's way above my head.
> > > I'm not a coder, just a builder/administrator.
> >
> > A bit harder anyway since dovecot is a modular system.
> >
> > Chuck..
> > Another fix for watching multiple daemons (more securely than
> > allwoing/denying them via xinetd IMHO) is something like swatch:
> > http://www.trustix.org/wiki/index.php/Swatch
> > http://swatch.sourceforge.net/
> >
> > It does the same as DenyHosts but does many many server side protos via
> > log file groking and blocks via iptables (better than using allow/deny
> > files)...
> >
> > Can easily be set up for pop3, IMAP, sshd, and more.
> >
> > Tweeks
> > _______________________________________________
> > XCSSA mailing list
> > XCSSA@xcssa.org
> > http://xcssa.org/mailman/listinfo/xcssa
>
> _______________________________________________
> XCSSA mailing list
> XCSSA@xcssa.org
> http://xcssa.org/mailman/listinfo/xcssa