LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   A moving target is always tougher to hack... (http://www.linuxquestions.org/questions/linux-security-4/a-moving-target-is-always-tougher-to-hack-25526/)

Cpare 07-10-2002 09:07 PM

A moving target is always tougher to hack...
 
Looks like I have been getting a FTP BF attack on my linux router hanging off of a cable modem. I am looking for suggestions on how I could continually get NEW ip addresses so I am not always sitting on the same IP...

I know a DHCP lease attempts to renew @ 50% the lease period, but only expires at 100%, and unfortunately even if I drop it on my client, the DHCP server will keep it registered...

So, could I set my firewall to not allow DHCP traffic, then have a cron job kick in every 24hrs and 5 mins to modify the firewall ruleset, get me a nice new IP and lock the system back down? I assume the new IP could then be sent to my e-mail address so I could still access it as needed....

There must be an easier way that won't cause downtime. Suggestions???

pickledbeans 07-10-2002 09:22 PM

First thing you have to determine if you have actaully been?
"cracked" or not? If you have then the best soluion is rebuild the server?

Go to http://freshmeat.net and search for "root kit".

Have you consider turning ftp?

php 07-10-2002 11:29 PM

How about running OpenBSD? heh

pickledbeans 07-11-2002 07:32 AM

Quote:

Originally posted by hackers_
How about running OpenBSD? heh
Hey, now this is a family forum :)

Also see my post (BSD forum) subject "Theo on changes to Apcache" .... Let's just saying marriage hasn't mellowed Theo out .....


All times are GMT -5. The time now is 05:57 PM.