moszi.net     return dev ? .net : java login
  - bits & pieces about software development HostingAbc Logo
Show all posts.
Wl500G Series - How to block bruteforce IP addresses automatically
If you have an open 22 port (SSH) on your machine, and you are interested in blocking all the IP addresses that try to bruteforce your password then this script is for you ;) .
As I really don't like using custom ports for any service if there is an other solution, I had to come up with this solution instead. In addition to this script there is also private/public key authentication turned on for dropbear (the ssh server for wl500gp) - however it's annoying seeing lots of invalid connections in auth.log :) .

How to use it:
The script should be started from crontab, and runs for at most 5 seconds for small authentication log files, so i start this script in each 15 minutes ;) .
You should change the path for all the files used in this script to match your system - then everything should work as expected.

you have questions - shoot me ;)
Download files: bruteForce.zip

The files included in the zip contain the ip addresses that tried to brute force my system. Keep the list if you want ;)
add link
microsoft.comWindowsClient.NetMike TaultyAsus wl500g custom firmware
The last comments:moszidev says:Venemo: it is at System.Web.Configuration.HttpConfigurationSystem.UseHttpConfigurationSystem moszidev says:dumb, ... no wonder your name is dumb :) ... i more or less expected these type of answers :) - trust me, i know the double locking design pattern :) ... but it seems that you don't really know for what the locking is needed ;) ...dumb says:this is called double locking: http://en.wikipedia.org/wiki/Double_checked_locking_patternVenemo says:Where did you find this in the framework?moszidev says:just found out that the maximum transfer rate on USB or UTP for this router is 3.5MBytes/sec. (that is 28MBit / sec)[br] So if you have a connection speed higher than this, it will not be fully used for sure.moszidev says:yepp, i know dd-wrt as well ;) - actually what i liked in oleg's firmware is that he didn't change the web ui ( which actualy i turned it off completely now ... ) - he just added new functionality to it.Kornel Javor says:If you're interested in custom firmwares, you should try dd-wrt too. As far as I know, your gadget is supported. Take a look at http://dd-wrt.com Dozens of new features were revealed after it was deployed to my Linksys and turned to a thousand do
{ This website uses MosziNet Persistence Manager and MosziNet Blog Control. }
Copyright (C) 2007, Molnar Szilveszter m@il me