Page 1 of 2 12 LastLast
Results 1 to 10 of 13

Thread: Unbanning IP addresses with Artillery

  1. #1
    Join Date
    Apr 2012
    Beans
    1

    Red face Unbanning IP addresses with Artillery

    Hello, I am trying to run Artillery and I need to un ban some IP addresses. However, updating the banlist.txt will not un ban and IP nor will running their script. If I use the command from IP tables it work but if I restart the app it will re ban the IP.

  2. #2
    Join Date
    Jan 2008
    Location
    USA
    Beans
    971
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Unbanning IP addresses with Artillery

    I never have understood the point in banning IP's. If you have a good firewall, just let them scan. Who cares?
    Occam's Razor for computers: Viruses must never be postulated without necessity -- nevius

    My Blog

  3. #3
    Join Date
    May 2010
    Beans
    462
    Distro
    Ubuntu Development Release

    Re: Unbanning IP addresses with Artillery

    Quote Originally Posted by rookcifer View Post
    I never have understood the point in banning IP's. If you have a good firewall, just let them scan. Who cares?
    I bet you never run any servers. If not, lamers will be happy to visit your server to plant as C&C.

  4. #4
    Join Date
    Jan 2008
    Location
    USA
    Beans
    971
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Unbanning IP addresses with Artillery

    Quote Originally Posted by wacky_sung View Post
    I bet you never run any servers. If not, lamers will be happy to visit your server to plant as C&C.
    Still doesn't answer my question of how banning an IP does anything whatsoever to stop this? If your firewall is setup properly, it shouldn't matter one way or the other.
    Occam's Razor for computers: Viruses must never be postulated without necessity -- nevius

    My Blog

  5. #5
    Join Date
    May 2010
    Beans
    462
    Distro
    Ubuntu Development Release

    Re: Unbanning IP addresses with Artillery

    Quote Originally Posted by rookcifer View Post
    Still doesn't answer my question of how banning an IP does anything whatsoever to stop this? If your firewall is setup properly, it shouldn't matter one way or the other.
    Banned IP help to prevent dictionary attack by brute force your login on your web application. This is totally nothing related to your firewall.

  6. #6
    Join Date
    Jan 2008
    Location
    USA
    Beans
    971
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Unbanning IP addresses with Artillery

    Quote Originally Posted by wacky_sung View Post
    Banned IP help to prevent dictionary attack by brute force your login on your web application. This is totally nothing related to your firewall.
    So make your password stronger. Also, make it so it times out after so many wrong attempts.

    Basically what I am saying is that "banning IP's" is security through obscurity measure and is not worth doing in most cases.
    Occam's Razor for computers: Viruses must never be postulated without necessity -- nevius

    My Blog

  7. #7
    Join Date
    May 2010
    Beans
    462
    Distro
    Ubuntu Development Release

    Re: Unbanning IP addresses with Artillery

    Quote Originally Posted by rookcifer View Post
    So make your password stronger. Also, make it so it times out after so many wrong attempts.

    Basically what I am saying is that "banning IP's" is security through obscurity measure and is not worth doing in most cases.
    I think you still cannot get my point. The OP may be providing a service to people such as web hosting,FTP, etc. He cannot set how people input their password by filter it with certain parameter. Thus this does not stop attackers to brute force OP clients password. Software like Fail2ban/others help to secure the web application from further dictionary attacks.I hope you can see it now.

  8. #8
    Join Date
    Jan 2008
    Location
    USA
    Beans
    971
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Unbanning IP addresses with Artillery

    Quote Originally Posted by wacky_sung View Post
    I think you still cannot get my point. The OP may be providing a service to people such as web hosting,FTP, etc. He cannot set how people input their password by filter it with certain parameter.
    Why can't he? Websites do it all the time.

    Thus this does not stop attackers to brute force OP clients password. Software like Fail2ban/others help to secure the web application from further dictionary attacks.I hope you can see it now.
    It's a game of whack a mole. You ban one IP, another one pops up. I see no point really. It's best to secure your system so that these malicious botnets can't do any harm regardless.

    Oh well, you see things your way, I see them mine. You prefer security through obscurity. I don't.
    Occam's Razor for computers: Viruses must never be postulated without necessity -- nevius

    My Blog

  9. #9
    Join Date
    May 2010
    Beans
    462
    Distro
    Ubuntu Development Release

    Re: Unbanning IP addresses with Artillery

    Quote Originally Posted by rookcifer View Post
    Why can't he? Websites do it all the time.



    It's a game of whack a mole. You ban one IP, another one pops up. I see no point really. It's best to secure your system so that these malicious botnets can't do any harm regardless.

    Oh well, you see things your way, I see them mine. You prefer security through obscurity. I don't.
    Are you aware that if you are running a server and very high potential that your clients have a massive accounts getting compromised especially using same method of attack.

    You can refer to Zone-H.org for your mass defacement which can be applied using dictionary attack/exploits.

  10. #10
    Join Date
    Mar 2013
    Beans
    1

    Re: Unbanning IP addresses with Artillery

    Did anyone ever answer this? I have the same problem as Juliia.

Page 1 of 2 12 LastLast

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •