I use iptables to lock down any ports I don't want exposed, then use fail2ban to block people trying to brute force their way in. On Tue, Jan 29, 2013 at 11:18 AM, Florez, Nestor <NFlorez@xxxxxxxxx> wrote: > Hi, > > I apologize is this is the wrong place to ask about probing. > > Some of our servers were probed back on the 24th of January > By these IP addresses > 177.73.233.241 > 216.70.90.155 > 5.9.120.22 > 64.131.79.194 > 64.147.170.17 > 91.121.154.81 > 91.121.161.131 > 94.23.104.140 > > And in the last 24 hours by these IP addresses > 168.144.28.111 > 176.9.220.214 > 178.210.163.150 > 184.107.226.10 > 208.116.60.208 > 62.75.182.85 > 80.13.187.24 > 91.121.154.81 > 91.121.162.58 > 95.211.25.18 > > > I been getting a lot more server probing messages than usual > I was wondering how do you handle it? > What do you look for on your server to see if there are problems? > > Any ideas will be appreciated. > > Thanks!!!! > > Né§t☼r > > -- > redhat-list mailing list > unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe > https://www.redhat.com/mailman/listinfo/redhat-list -- - Stephen Gilbert -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
