SSH, FTP Security
-
- OMV 1.0
- onionjohn
-
-
You can use your firewall (iptables) to block certain ip's or whole ranges if you want.
BTW, for the ftp close the port in your router, and allow yourself in only through a vpn or ssh SOCKS.
And also, use key authentication for ssh!! -
Hi
you need to implement a set of rules for the Iptables as described herehttp://www.rackaid.com/blog/ho…-ssh-brute-force-attacks/
after a number of failed login attempts the attacking IP address will be blocked for a period of time.
I hope that this helpsFT
-
-
I recommend using a port other than 22 for ssh as well.
-
would it be difficult to implement the IPtables rules that I indicated as a feature inOMV?
I would like to see a tab on the firewall section where it is possible to indicate the port number, the number of failed attempts before blocking and the time the IP address will be blocked for...I was thinking of filing a feature request but only if it's considerate as appropriate/doable...
thanks
FT -
It doesn't sound impossible. I would fill out the feature request to see what Volker thinks.
-
-
This is also doable with pam_tally2, which is thought was getting implemented in OMV.
-
It doesn't sound impossible. I would fill out the feature request to see what Volker thinks.
is the feature request form the same as the bug tracker?
-
Yep.
-
-
Use OpenVPN to connect. Don't open so many ports. This is customization request that could vary a lot with different users. Volker will likely reject it.
-
Turns out I am an idiot opening port 22 instead 21 for FTP. I was wondering how he is using port 22.
But now FTP won't work. The sharing is added but there is nothing showing when I connect.
Jetzt mitmachen!
Sie haben noch kein Benutzerkonto auf unserer Seite? Registrieren Sie sich kostenlos und nehmen Sie an unserer Community teil!