store | blogs | forums | twitter | facebook | wiki | downloads | support portal
Atomic Secure Linux
It is currently Fri Jun 23, 2017 11:44 am

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]




Post new topic Reply to topic  [ 2 posts ] 
Author Message
 Post subject: howto prevent outgoing brute-force attacks
Unread postPosted: Wed Nov 23, 2016 9:19 am 
Offline
New Forum User
New Forum User

Joined: Wed Nov 23, 2016 9:09 am
Posts: 1
Location: Brazil
Hi,

Recently i have 2 security incidents caused by outdated software used by our customers (shared server).
In both cases an outdated joomla installation permit code execution and my server was been used to try brute-force attacks to others servers wordpress.
Something like this: https://nixtree.com/blog/detecting-word ... om-server/
My question is how is possible to prevent and detect this. What is the best way to deal with this because i can't force all customers to have updated software and i believe that exist a way to sniff periodicly the traffic or check the outgoing traffic, etc...
I'm looking for some security tool for that. Some ideas?

Thanks for advice,
Wilson


Top
 Profile  
Reply with quote  
 Post subject: Re: howto prevent outgoing brute-force attacks
Unread postPosted: Sat Nov 26, 2016 12:54 pm 
Offline
Long Time Forum Regular
Long Time Forum Regular

Joined: Thu Dec 09, 2004 11:19 am
Posts: 2315
Well, I'd be keen to know why the site was able to be compromised if your server was running ASL.

I know that ASL can't protect against everything. One site on one of our systems was compromised via a vulnerability in the script. But if we can discover what was going on, it might help to create a new rule to protect against the same thing happening again.

_________________
--------------------------------
<advert>
If you want to rent a UK-based VPS that comes with friendly advice and support from a fellow ART fan, please get in touch.
</advert>


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 2 posts ] 

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group