GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Anybody experiencing FTP attacks on their servers?

raymor · 08-13-2009, 01:59 PM

We see FTP dictionary attacks on most servers where we look for it.
POP3, email, is also a popular target because very often your FTP user/pass
will be approved for POP3, but people leave POP3 unprotected. So the bad
guys brute on POP3, then when they hit one that works try the same user/pass
for FTP, Wordpress, etc. On our servers, EVERY single daemon has brute
force protection - SMTP, IMAP, POP3, FTP... . SSH is keys only, no passwords.
We created a single brute force protection system that can watch any service.
There are just a couple of settings to adapt it fro FTP, POP3, etc.

08-13-2009, 01:59 PM
raymor Confirmed User Join Date: Oct 2002 Posts: 3,745	We see FTP dictionary attacks on most servers where we look for it. POP3, email, is also a popular target because very often your FTP user/pass will be approved for POP3, but people leave POP3 unprotected. So the bad guys brute on POP3, then when they hit one that works try the same user/pass for FTP, Wordpress, etc. On our servers, EVERY single daemon has brute force protection - SMTP, IMAP, POP3, FTP... . SSH is keys only, no passwords. We created a single brute force protection system that can watch any service. There are just a couple of settings to adapt it fro FTP, POP3, etc. __________________ For historical display only. This information is not current: support@bettercgi.com ICQ 7208627 Strongbox - The next generation in site security Throttlebox - The next generation in bandwidth control Clonebox - Backup and disaster recovery on steroids