Popular Posts

• Permanently Ban Repeat Offenders With fail2ban (UPDATED)The fail2ban suite is a very useful tool in the battle against brute force login attempts. Where it's capabilities broke down for me, however, was in addressing repeat offenders. This post includes a configuration to permanently block repeat offenders using the iptables firewall.
• Comcast Sets Customers Up as Phishing TargetsToday I received an e-mail message from Comcast extolling the [...]
• Logstash: BFD (Big Forensic Data)Presentation video and slides from last week's Security Weekly show, where I talked about Logstash in forensic investigations.
• iptables Processing FlowchartI've created a flowchart that details the flow traffic takes through the various tables and chains of the Linux iptables firewall.

Recent Posts

• Logstash: BFD (Big Forensic Data)Presentation video and slides from last week's Security Weekly show, where I talked about Logstash in forensic investigations.
• Slides from SANS @Night, Bangalore IndiaI really enjoyed giving a SANS @Night talk in Bangalore, [...]
• iptables Processing FlowchartI've created a flowchart that details the flow traffic takes through the various tables and chains of the Linux iptables firewall.
• Slides from SANS @Night: There's GOLD in Them Thar Package Management DatabasesI still need to pull the commands out of this [...]

Comments

• Phil HagenAh - that's an interesting nuance. The outbound
• A GideonThe ruleset filter.FORWARD permits tests of the ou
• Gustavo MartinI just came to say. Thanks a lot for the helpful f
• Phil HagenA fair statement - I'm of the same mindset!

Tags