 | | | SSH Dictionary Attacks (does not work with EL3) | SSH Dictionary Attacks (does not work with EL3) 2006-01-13 - By bob
Back
The script works on my machine, the only diffrence is my kernel and yours.
Youre running SMP, I am using 2.4.21-32 on EL3
I get no error messages. iptables -L shows it working fine.. as root
see if U have the line
/lib/iptables
in file "/etc/ld.so.conf"
else add it then do
ldconfig
-bob
-- -- Original Message -- --
From: "Rainer Traut" <tr.ml@(protected)>
To: "Discussion of Red Hat Enterprise Linux 3 (Taroon)"
<taroon-list@(protected)>
Sent: Friday, January 13, 2006 3:30 AM
Subject: [Bulk] Re: SSH Dictionary Attacks (does not work with EL3)
> Thx for your answer, Bob.
>
> bob schrieb:
>
>> $IPTABLES -A INPUT -p TCP -m state --state ESTABLISHED,RELATED -j ACCEPT
>> $IPTABLES -A INPUT -p TCP -m recent --update --seconds 60 --hitcount
>> 4 -j DROP
>> #sshd
>> $IPTABLES -A INPUT -p TCP -i $INET_IFACE -s 0/0 -d 2.3.4.5 --dport 223 -j
>> ACCEPT
>
> Correct me if I'm wrong but you are using the same module here which does
> not work on EL3.
> So your script does not apply cleanly on EL3 without getting error
> messages.
>
> My question was if it is somehow possible to use this module as it is
> obviously built but cannot be used.
>
>>> But I have couple of EL3 servers where I wanted to do this.
>>> But EL3 does not seem to work:
>>>
>>> iptables v1.2.8: Couldn't load match
>>> `recent':/lib/iptables/libipt_recent.so: cannot open shared object file:
>>> No such file or directory
>>>
>>> find /lib/ -iname "*recent*"
>>> shows:
>>> /lib/modules/2.4.21-37.ELsmp/kernel/net/ipv4/netfilter/ipt_recent.o
>
> Gruss
> Rainer
>
> --
> Taroon-list mailing list
> Taroon-list@(protected)
> https://www.redhat.com/mailman/listinfo/taroon-list
--
Taroon-list mailing list
Taroon-list@(protected)
https://www.redhat.com/mailman/listinfo/taroon-list
|
|
|