From Arthur Sentsov - Questions from beginner
Pekka Niiranen
pekka.niiranen at pp5.inet.fi
Thu May 13 10:39:09 UTC 2010
Matthew Seaman wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 13/05/2010 05:41:47, Artur Sentsov wrote:
>
>> 1. I have freebsd server running apache and mysql. In logs i see around 100
>> attempts to hack the server. Is that normal? what i have to do that after
>> three wrong attempts to enter password server will block ip address?!
>
Use pf -filter to collect attempts to a list. That list will then be
used to block attempts in future (aka bruteforce option).
> Do you mean attacks against the web server?
>
> Automated web probes attempting to exploit various security flaws are,
> I'm afraid, completely normal nowadays. The good news is that most of
> the probe attempts are aimed at other operating systems, and could never
> work on FreeBSD. Even so, you should take care to apply any available
> security patches promptly. Unfortunately there aren't many good ways to
> automatically block bruteforce attacks against web applications -- too
> many different ways of implementing passwords in different web apps.
> Use good passwords basically.
>
>> 2. I use SSH to sonnect to server and work on it! Is that secure?
>
> On the other hand, do you mean attempts to bruteforce attacks against
> ssh? Again, this is unfortunately normal on the web nowadays.
>
> Yes, ssh is generally secure. It's certainly better than alternative
> means of remote access.
>
> If you have good passwords on your accounts, the chances of any attacker
> being able to guess what they are is actually very remote. So no need
> to run about in a complete panic. Take your time to read up on the
> possible solutions and implement what works best for you.
>
> One very simple means you can use to make it completely impossible for
> any attacker to bruteforce an ssh password on you machine is to use key
> based authentication instead: no passwords means no possibility of them
> being guessed. This will not stop bruteforce /attempts/ -- they are
> usually done entirely automatically -- and the traces will still clog up
> your log files, but you can safely ignore them.
>
> This is a perennial topic on this list -- search the archives for many,
> many reiterations of people giving realms of good advice about what to
> do to defend yourself.
>
>> 3. How to setup SAMBA on server?! I want my users to be able to upload files
>> and download files from their folder. Users use windows.
>
> Well, install the one of the samba ports -- net/samba34 is probably your
> best bet -- and read the very good documentation that comes with it.
>
> Cheers,
>
> Matthew
>
> - --
> Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard
> Flat 3
> PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
> Kent, CT11 9PW
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2.0.14 (Darwin)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
>
> iEYEARECAAYFAkvrlTQACgkQ8Mjk52CukIzQWwCePA1dH42HG4DH+yI9wkrUOXrq
> M2IAn1B19pICPnD6F47CPYDXQptq4Aad
> =dCkW
> -----END PGP SIGNATURE-----
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
>
=======
Email scanned by PC Tools - No viruses or spyware found.
(Email Guard: 7.0.0.18, Virus/Spyware Database: 6.14980)
http://www.pctools.com/
=======
More information about the freebsd-questions
mailing list