Welcome, Guest
Please Login or Register.
Lost Password?
Virtualmin Forum English Virtualmin
Adding mod_ban to proftpd (1 viewing)
Post Reply

TOPIC: Adding mod_ban to proftpd
#17496
HamidHashemi (User)
Posts: 28
graphgraph
Adding mod_ban to proftpd 2008/11/05 09:03  
Hi,

I am suggesting to enable mod_ban ( http://www.castaglia.org/proftpd/modules/mod_ban.html ) on proftpd for controlling the Brutal Attack which is coming through FTP.
It is just and update of the RPM for proftpd. Can you please give me your idea about that ?

_Hamid
  The administrator has disabled public write access.
#17920
SteveAcup (User)
Posts: 64
graphgraph
Re:Adding mod_ban to proftpd 2008/11/16 14:41  
Agree... I had constant FTP attacks, and the new proftpd with built in mod_ban stops them cold. With proftpd 1.32 pr newer just select the mod_ban compile option and then add this or something like it to the proftpd config file:

BanEngine on
BanLog /var/log/proftpd/ban.log
BanTable /var/data//proftpd/ban.tab
BanOnEvent MaxLoginAttempts 2/00:10:00 01:00:00

I would propose to Joe something like this be the default.

Steve

[edit: this was a FREEBSD & VMPro install via install script. Update all the ports first before install.sh . Make sure all directories exist and are writeable by proftpd]

Post edited by: SteveAcup, at: 2008/11/16 14:44
  The administrator has disabled public write access.
#17921
sgrayban (User)
Posts: 604
graphgraph
Re:Adding mod_ban to proftpd 2008/11/16 15:26  
Debian etch does not have mod_ban -- only a few distros actually have this module so in the end Joe/Jamie would have to support this in there own repo's. It's a great mod and I use it for my mandriva desktop. Shame that debian has failed to include this.
Scott Grayban
BORGNET dot US Internet Hosting
VM Pro Reseller
  The administrator has disabled public write access.
#17924
Joe (Admin)
Posts: 4213
graph
Re:Adding mod_ban to proftpd 2008/11/16 16:23  
I'd prefer the default be not using FTP, at all. SSH has an excellent FTP protocol, which most FTP clients support, and the security history of OpenSSH is excellent. ;-)

I'll look into mod_ban...but I won't make any promises. As Scott mentioned, if it isn't a standard module, it requires a serious investment of resources to create and maintain the packages.
  The administrator has disabled public write access.
#17927
sgrayban (User)
Posts: 604
graphgraph
Re:Adding mod_ban to proftpd 2008/11/16 18:00  
I wouldn't bother with it -- researching for any debian packages comes up with nothing except for a 1 old version of proftpd and mod_ban... 1.2.1 and .4.5 so its not worth it unless you do a complete rebuild for debian etch.
Scott Grayban
BORGNET dot US Internet Hosting
VM Pro Reseller
  The administrator has disabled public write access.
#18425
HamidHashemi (User)
Posts: 28
graphgraph
Re:Adding mod_ban to proftpd 2008/12/06 11:33  
Joe,

As I can see you are already building your own package for CentOS proftpd, not default package ( mine is proftpd-1.2.10-9.vm ) . For sure it should be easy to just include the mod_ban compile time enviroment to the spec file and that's all. As steve mentioned it is already included in the new version of proftpd.

_Hamid
  The administrator has disabled public write access.
Post Reply
get the latest posts directly to your desktop

Learn

About
Documentation
FAQ
Compare

Talk and Get Help

Support
Forums
Bugs and Issues

See It In Action

Screenshots
Video Introduction
Demo

Get Virtualmin

OS Support
Buy Online
Download
 Copyright 2005-2007 Virtualmin, Inc. All rights reserved.