I'm experience a bad flood of password cracking attempts. What I usually do is to see the ip address and block it in the .htaccess file.
But this time I'm seeing about 40 or 50 different IP address worldwide hitting on me with random passwords.
Whats the best thing to do now and in the future?
for now I have stopped Apache and hope they'll go away.
In the future I guess I need some tool to block ip addresses dynamically. How's this done?
I have a 404 redirect that brings up a page if an incorrect password is entered whilst trying to access a secure area. Is this not enough?
Doesit not slow the &*^£*^$ers down? would the 404 redirect be better in say redirecting to a non existant site?
Help me out here guys its late and I dont want to stay up all night.
debian. apache 1.3.20
But this time I'm seeing about 40 or 50 different IP address worldwide hitting on me with random passwords.
Whats the best thing to do now and in the future?
for now I have stopped Apache and hope they'll go away.
In the future I guess I need some tool to block ip addresses dynamically. How's this done?
I have a 404 redirect that brings up a page if an incorrect password is entered whilst trying to access a secure area. Is this not enough?
Doesit not slow the &*^£*^$ers down? would the 404 redirect be better in say redirecting to a non existant site?
Help me out here guys its late and I dont want to stay up all night.
debian. apache 1.3.20