[clug] [OT] IP range of a domain?
Michael Cohen
scudette at gmail.com
Thu Jan 21 01:56:56 MST 2010
Carlo,
A better idea is to install knockd to have a port knocking sequence
open up the ssh port. This way you dont have to fix the IP address you
are coming from, but you still have most of the internet filtered -
cleaner logs etc. Port knocking is not a security measure on its own
(thats why you have ssh) but it helps to cut out uninvited connections
and might give some window of security against zero days and random
ssh scanners.
Michael.
2010/1/21 Carlo Hamalainen <carlo.hamalainen at gmail.com>:
> On Thu, Jan 21, 2010 at 2:16 PM, Robert Brockway
> <robert at timetraveller.org> wrote:
>> If you had some idea of the naming scheme they use you could try to brute
>> force it by cycling through what you think is the entire set they use for
>> hostnames, but this is a poor method for several reasons. The accuracy of
>> this method is dependent on how well you guess their naming scheme, and in
>> any case is very heavy on the network. I only mention it so as to disuade
>> you if you were contemplating using it :)
>
> OK, I suspected that it would be like that.
>
> I want to drop all incoming ssh connections to my server apart from a
> few IP addresses plus my current home ADSL. When I had Internode I was
> able to allow x.y.*.* and it seemed to work, but iPrimus (not my
> choosing) seems completely random.
>
> --
> Carlo Hamalainen
> http://carlo-hamalainen.net
> --
> linux mailing list
> linux at lists.samba.org
> https://lists.samba.org/mailman/listinfo/linux
>
More information about the linux
mailing list