brute force

Fail2ban is a tool that observes login attempts to various services, e.g. SSH, FTP, SMTP, Apache, etc., and if it finds failed login attempts again and again from the same IP address or host, fail2ban stops further login attempts from that IP address/host by blocking it with an iptables firewall rule.

If you have multiple computers on your desktop there are a number of scenarios for using them: The brute force way: get a big desk and a swivel chair and spin back and forth between keyboards/mice Use VNC or ...

HowtoForge: "In this article I will show how to install and configure fail2ban on a Fedora 9 system. Fail2ban is a tool that observes login attempts to various services, e.g.

SSH, FTP, SMTP, Apache, etc., and if it finds failed login attempts again and again from the same IP address or host, fail2ban stops further login attempts from that IP address/host by blocking it with an iptables firewall rule."

CERT has sent out an advisory on key-based attacks being used against Linux systems.

"The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access.

Once root access has been obtained, a rootkit known as 'phalanx2' is installed." There's no talk of where the original stolen keys come from.

This is the story of the OLPC project since it was announced in January of 2005. Intel and Microsoft are monopolies that used brute force to delay the OLPC non-profit open-source project from starting the cheap laptop revolution, taking away the profit margins from a multi-hundred-billion dollar laptop and PC industry.

A netfilter (iptables) setup: very useful to stop hosts from performing brute force attacks on services that require a password, such as the ssh service.

If you're running SSH servers then do you know how often an intruder tries to brute force guess your login passwords?

To know that you've got to check your logs one way or another and hopefully you're diligent ...

You’ve probably heard by now about the gaping hole in keys generated by Debian’s OpenSSL. If not, the summary is that your SSH keys and SSL certs were selected from a fixed pool of 215 (32,767) possibilities, and are thus easy to brute-force over the network.

If you have any keys generated on a Debian system, you need to immediately replace them or

A new tutorial from the Linux Security Forum: Setting Up and Protecting Your Server With a Brute Force Detector

Roundup: With the 18-month gap in OpenSSL publicly discovered, already tools built to exploit the not-so-random keys have surfaced.

Computerworld details the threat, and Computerworld Australia gives tips on defending against this and other brute-force attacks.