[SGVLUG] More chump stumpers
Emerson, Tom
Tom.Emerson at wbconsultant.com
Mon Sep 11 16:42:54 PDT 2006
Remembering that I forgot how I got the whole spam-nuking-chain set up
before reminds me of a few other things I'd like to see "done" on a
system...
-- honeypot/beesting: I happened to glance over at the blinky lights
on my switch the other night and noticed a steady rythmic flash for a
VERY long time; started tailing various log files until I found in
/var/log/vsftpd.log thjat someone was "brute-force" attacking my
anonymous FTP server (oh, the irony...) then I checked back "several
days" and saw the same pattern repeated from different IP addresses; the
thought occurred to have the FTP server go into "tarpit" mode or else
trigger a DDoS return attack (ping -f or similar, nothing terribly
sophisticated) until they got the point "don't try breaking in" [of
course, this sort of network pushing and shoving gets into legal
potholes, and neither one is "right", etc. etc., etc.]
-- a full domain setup -- everything from purchasing a "domain" to
the various DNS entries for web and mail, postfix/sendmail setup for
proper "presence" on the 'net without being a relay, etc.
-- A dynamic webpage for http://osnut.homelinux.net/galleries as I
add subdirectories to this portion of my web tree, anyone "browsing" to
that location should get a fixed/random sample image from each of the
associated photo galleries (and extending to sub-galleries as
appropriate) which in turn is a link to the gallery. (and possibly
reads a meta-file stored in the gallery directory that can be used for
name/title/notes)
-- for that matter, a script or similar that can be used as the
target of the tag
<img src=".....">
that returns a random picture from a given gallery (thumbnail)
directory
[yeah, I know this last one should be trivially simple, it's just I've
never sat down to consider what it would take...]
More information about the SGVLUG
mailing list