VV's Corner » linux http://vinoaj.com/blog my collection of random thoughts, how-to's and code snippets Sat, 04 Dec 2010 15:05:54 +0000 en hourly 1 http://wordpress.org/?v=3.1 scp Usage http://vinoaj.com/blog/2007/07/scp-usage/ http://vinoaj.com/blog/2007/07/scp-usage/#comments Wed, 25 Jul 2007 11:34:03 +0000 vinoaj http://vinoaj.com/blog/howtos/scp-usage/ Secure File Copy (scp) allows you to copy files between hosts using the SSH protocol.

To copy from a remote host to your current host

PLAIN TEXT
PERL:
  1. scp -r user@remotehost:path/to/remotefiles localtarget
  2.  
  3. #-r recursive copy
  4. #you will be prompted for user's password @ remotehost

To copy files from your current host across to the remote host

PLAIN TEXT
PERL:
  1. scp -r localfiles user@remotehost:path/to/remotetarget

]]> http://vinoaj.com/blog/2007/07/scp-usage/feed/ 0 Installing and setting up bfd http://vinoaj.com/blog/2007/04/installing-and-setting-up-bfd/ http://vinoaj.com/blog/2007/04/installing-and-setting-up-bfd/#comments Wed, 04 Apr 2007 20:30:07 +0000 admin http://vinoaj.com/blog/howtos/linux/linux-security/installing-and-setting-up-bfd/ BFD (brute force detector) is an excellent package by rfxnetworks that works hand-in-hand with the APF firewall package to automatically detect and put an end to brute force access attempts. BFD works by monitoring for excessive access attempts via ssh. If it does detect attempts, it places the offender's IP in APF's deny hosts file. Thus APF automatically drops packets from the offender and cuts them off from the server.

cd to a temp folder with exec permissions

wget http://www.rfxnetworks.com/downloads/bfd-current.tar.gz
tar -xvzf bfd-current.tar.gz
cd bfd*
./install.sh

.: BFD installed
Install path: /usr/local/bfd
Config path: /usr/local/bfd/conf.bfd
Executable path: /usr/local/sbin/bfd

Edit the configuration file located at /usr/local/bfd/conf.bfd

Change ALERT_USR="0" TO ALERT_USR="1"
Change EMAIL_USR="root" TO EMAIL_USR="you@yoursite.com"
(if you wish to receive alert e-mails at an address other than root's)

Now add your IP address to BFD's list of ignore hosts. This prevents you from getting locked out of your server in the future.
edit /usr/local/bfd/ignore.hosts
Add any IP address that you want to be ignored from the rules - e.g. your IP, server provider's monitoring services, authorised users' IPs, etc.
A good rule of thumb is to copy the list of IPs already in apf's allow_hosts.conf file. If you are already allowing these addresses through the firewall, it is more than likely that you also want to ignore them from bfd's monitoring.

/usr/local/sbin/bfd -s

]]> http://vinoaj.com/blog/2007/04/installing-and-setting-up-bfd/feed/ 0