nostromos bLog






* all entries (445)
* concerts (28)
* misc (120)
* techtalk (18)
* travel (241)
  `-bruxelles_07 (8)
  `-canada_14 (22)
  `-hongkong_09 (13)
  `-iceland_10 (14)
  `-ireland_16 (7)
  `-japan_13 (22)
  `-paris_06 (1)
  `-poland_10 (3)
  `-russia_10 (12)
  `-scotland_15 (11)
  `-sweden_09 (10)
  `-taiwan_12 (22)
  `-tokyo_08 (14)
  `-usa_09 (10)
* zoo (38)
  `-abroad (8)
  `-linz (3)
  `-misc (11)
  `-schoenbrunn (16)


08(01), 07(03), 06(03), 05(02), 04(02), 03(02)
12(02), 11(01), 10(08), 09(03), 07(17), 06(01), 05(04), 04(03), 03(02), 02(02), 01(06)
12(05), 11(02), 10(01), 09(01), 08(02), 07(04), 06(01), 05(02), 04(03), 03(02), 02(02), 01(01)
12(01), 11(02), 09(09), 08(16), 07(02), 06(03), 05(04), 04(03), 02(03), 01(02)
12(03), 11(01), 10(02), 09(01), 08(23), 07(03), 06(02), 05(01), 04(02), 03(02)
12(03), 11(02), 10(01), 09(01), 08(23), 05(02)
09(04), 08(01), 06(01), 05(02), 04(02), 03(01), 02(01)
11(01), 10(02), 09(15), 08(01), 07(02), 06(04), 04(12), 01(06)
12(05), 11(01), 10(06), 09(12), 08(02), 07(02), 06(01), 05(01), 04(10), 02(01), 01(05)
12(02), 08(01), 07(15), 06(02), 05(03), 02(02), 01(03)
12(05), 11(01), 07(24), 06(06), 05(03), 04(02), 01(01)
12(01), 11(01), 10(07), 09(01), 08(04), 07(05), 06(04), 05(06), 04(01), 03(04), 02(06), 01(04)
12(04), 11(02), 10(03), 09(04), 08(03), 07(04), 04(01)
07(01), 05(01)
08(01)
10(01)

Fri, 21 Feb 2014
the key (0 comments)
yippieh, we got the key to our new flat. awesome!

top [
^
]


Tue, 18 Feb 2014
fail2ban and badips.com (0 comments)
++ alert ++ tech-talk ++ alert ++ tech-talk ++ alert ++
having sshd on default port 22 will cause a lot of ssh brute-force attacks - every sysadmin knows this nuisance. so far i used freebsd's "pf" firewall with "max-src-conn-rate" and overloading the blacklisting table. to remove the banned ips after a while i used "expiretable". so far this worked fine, but it was for ssh connections only. to also address other brute-force attacks, i tried "fail2ban", and added rules to block imaps bruteforce attacks. while doing research on the internet i came across a site that combines ip banning with reporting the ip to badips.com. so i included this one too, and now have a graphical representation of all the reported attacker ips. see it here. isn't that lovely? also notice the cool ninja in the 8-bit style logo. strangely enough, since i set this all up, there are not many brute-force attacks. what's wrong with the internetz? so far i like "fail2ban", except for it's really crappy documentation. it makes use of the power of regex to scan all kind of logfiles you feed to it. so this is really a powerful tool.

top [
^
]


Fri, 07 Feb 2014
cat cake (0 comments)
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaw, look what i got!
another one of nina's awesome kitty-cat cakes! a super-delicious, self made, crumble cake with strawberry layers and a raspberry topping, with a little marzipan cat sitting on top of it - nomnomnom... thanks so much again, nina! i love those cakes

top [
^
]

[ prev | index | next ]