Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 976 Categories, Downloaded 29.548.528 Times

BlockHosts 2.0.5

  Date Added: March 04, 2010  |  Visits: 755

BlockHosts

Report Broken Link
Printer Friendly Version


Product Homepage
Download (74 downloads)



BlockHosts is a script to record how many times "sshd" or "proftpd" is being attacked, and when a particular IP address exceeds a configured number of failed login attempts, that IP address is added to /etc/hosts.allow (or optionally to any other file). Requires python version 2.3 at a minimum, and runs on Unix-like machines only. The BlockHosts script is most suitable for home Linux users, who need to keep ssh/ftp ports open. Blocks IP addresses based on SSH or FTP incoming login failures, by looking at SSHD and ProFTPD logs, and updating hosts.allow as needed. If you are a Linux user running SSH server, it is likely that you have been probed by script kiddies, and your daily LogWatch emails will show 100-150 login attempts in a short interval, before they go away. There is no option in OpenSSH to make it difficult to slow down repeated login attempts coming from one IP address -- logins occur at a pretty fast clip -- one attempt every few seconds. For a home or small business linux user at least, it does not make sense to keep the door open for logins for so long. Use this script, and see the daily LogWatch email notifications now showing only 7-9 login attempts, and remote hosts start getting "Refused incoming connection" messages. Then, reading the daily LogWatch emails is not terrifying at all, in fact, it may be fun to see these script kiddies get blocked! - Be sure to acquaint yourself with material available on the web, related to security, and denial-of-service. In particular, see the discussion in the OpenSSH mailing list related to SSHD blocking and FAIL_DELAY: - Make your sshd/proftpd configurations as tight as possible. For example, for sshd - turn off root logins (PermitRootLogin), use the AllowUsers keyword to only allow one or a select usernames to be accepted. As far as possible, try to avoid common usernames, make even the user names hard to guess. For ProFTPD, use /etc/ftpusers, which contains names of users that will not be allowed to use FTP, root should be in there. - Last, but not least - always use strong passwords! That is the only real protection. blockhosts.py scans system logs, and looks for failed login attempts. It keeps a record of the number of times a particular IP address had a failed login. When the count exceeds a configured value, that IP address is added to /etc/hosts.allow with a deny flag, so the next time that IP address attempts to connect to that box, they will get a refused connection message..

Requirements: No special requirements
Platforms: Linux
Keyword: Address Attempts Blockhosts How Many How Many Times Ip Address Login Logwatch Networking Record Script System Times
Users rating: 0/10

License: Freeware Size: 38.91 KB
USER REVIEWS
More Reviews or Write Review


BLOCKHOSTS RELATED
Web Searching Tools  -  BeeThink IP Address WhoIs 1.0
BeeThink IP Address WhoIs is a tool for looking up IP address information. It will retrieve the ownership information by digging through various whois servers automatically.
607 KB  
Networking Tools  -  Router IP Address 1.0
Router IP Address is a small utility for discovering the dynamic IP address assigned by your Internet Service Provider (ISP) when you have a router connecting several computers to a single internet connection (cable modem, DSL, or telephone modem).
 
Modules  -  IP Address Collecter 1.0
Collects the purchasers IP address and stores in the database. Creates a new column in adminorder.php so the Store Owner can easily see the IP address.
 
Modules  -  IP Address Displayer 1.0
You can add this code to any pages you want and to any where you see fit to your website (on the center, up, down) and this code simply displays the user's IP Address on the page and nothing else.Complete Package.
 
Networking  -  IP address conversion functions 1.0
This script allows you to convert dotted-quad IP addresses to long integer and back, get network and host portions from an IP address.
 
Networking  -  Get the IP address of a network interface 1.0
This script uses the Linux SIOCGIFADDR ioctl to find the IP address associated with a network interface, given the name of that interface, e.g. "eth0". The address is returned as a string containing a dotted quad.
 
Networking Tools  -  NAT Check 1
Check Your Network Address Translator for Compatibility with Peer-to-Peer Protocols. If you are accessing the Internet from behind a Network Address Translator (NAT) of some kind, I would appreciate your help in surveying the behavior of...
 
Libraries  -  IPlib 1.0
IPlib is a Python module to convert between many different IP address notations and to manage netmask/address pairs in the CIDR notation. Some example scripts ("ipconv", "nmconv", and "cidrinfo") are included..
18.43 KB  
Networking Tools  -  IP Country Lookup 1.0
IP Country Lookup is a free DNS tool for Windows that lets you lookup the country an IP address or hostname originates from. It uses a locally installed file containing a list of networks and associated countries to quickly determine the...
1.15 MB  
Networking Tools  -  mysqlIPM 1.23
mysqlIPM is a Web-based IP address, router, firewall, and quality of service manager. It includes provisions for MAC hardware addresses, and tftp files for router backup. In a nutshell mysqlISP assigns (and deploys across network of ISP servers)...
184.32 KB  
NEW DOWNLOADS IN NETWORK & INTERNET, NETWORKING TOOLS
Network & Internet  -  Free WiFi Hotspot 3.3.1
Free WiFi Hotspot is a super easy solution to turn your laptop or notebook into a portable Wi-Fi hotspot, wirelessly sharing your internet connections like DSL, Cable, Bluetooth, Mobile Broadband Card, Dial-Up, etc. through the built-in wireless...
1.04 MB  
Network & Internet  -  Easy Uploads 1.8
Easy uploads is a file storage media streaming application designed by Filestreamers that allows you to upload, store, and stream your files from their virtually unlimited file storage server. Easy Uploads can backup,share, and stream your files...
615.97 KB  
Network & Internet  -  IPv6 CARE 3.2b
IPv6 CARE, "IPv6 Compliant Automatic Runtime Environment", is a Linux tool able to patch ipv6-agnostic programs on-the-fly ('patch' mode). It can also generate a diagnosis about the IPv6 compliance of an application ('check' mode).
409.6 KB  
Network & Internet  -  PacketFence ZEN 3.1.0
PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) system. Boosting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X...
1024 MB  
Network & Internet  -  django-dbstorage 1.3
A Django file storage backend for files in the database.
10.24 KB  
Networking Tools  -  gvrpad 0.1
gvrpad is a daemon that makes GVRP announcements of all VLAN interfaces on a FreeBSD system. GVRP is the GARP VLAN Registration Protocol, defined in IEEE 802.1Q (VLANS); GARP is the Generic Attribute Registration Protocol, defined in 802.1D...
15.36 KB  
Networking Tools  -  Cheops 0.61
Cheops is an Open Source Network User Interface. It is designed to be the network equivalent of a swiss-army knife, unifying your network utilities. Cheops is for the network what a file manager is for your filesystem..
317.44 KB  
Networking Tools  -  dynacc 0.5.0
Dynacc aims to be a Pakage which gives you control other your Internet Connection. It runs a linux router/host which provides MASQ services and HTTP proxying for a LAN. It gives you the Power to define users/groups which are allowed to make...
122.88 KB  
Networking Tools  -  ssh tunnel on demand 1.0
ssh tunnel on demand provides a script that creates an SSH tunnel on demand. ssh tunnel on demand is a script that makes it possible for a user to create an SSH tunnel to a server and connect to it without needing an account on the box or any...
13.31 KB  
Networking Tools  -  strongSwan 4.1.5
strongSwan is an OpenSource IPsec implementation for the Linux operating system. strongSwan is an OpenSource IPsec implementation for the Linux operating system. In order to have a stable IPsec platform to base our future extensions of the X.509...
1.7 MB