republican-creole
Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Industry Forums » Wireless Service Providers » Log from RouterOS
Search Topic:
Uniqs:
193		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·WISP Forum FAQ ·WISP Directory ·WISP Forum Frappr Map ·Radio Mobile
Canopy SM question/issue »
« Motorola Canopy 5.4 Ghz anyone use them yet?  
AuthorAll Replies

livewireless

join:2006-11-03
La Jolla, CA

Log from RouterOS

Click for full size
Hackers IP
Anbody get hack attempts like these?
I've got some filters and can probably get one going for this.
Just thought I'd post this to get this IP known.
to forum · permalink · · 2009-11-08 22:46:59 · Reply to this

gunther_01
Premium
join:2004-03-29
Saybrook, IL

 You will be fighting logs like that for a while until you lock those ports down or place something automatic in there to block the attempts.

It's un-avoidable... Prob just some scanner program/hack/virus etc.. going about it's daily grind
to forum · permalink · · 2009-11-08 23:46:01 · Reply to this


Inssomniak
Premium
join:2005-04-06
Cayuga, ON

reply to livewireless
you can add ssh/ftp rules into your firewall that automatically blacklist 3 unsuccessful attempts to login.


ftp is the same, just change the port and address list name
to forum · permalink · · 2009-11-09 09:29:03 · Reply to this

livewireless

join:2006-11-03
La Jolla, CA
1 edit		 Thanks gunther-01, Inssomniak
to forum · permalink · · 2009-11-09 10:43:26 · Reply to this

tx_tower

join:2007-11-13
Blanco, TX		reply to livewireless
we usually see these start within 12-24 hours of the device being connected.

once you set up the blacklist script you should be fine, like gunther mentioned its not a specific concentrated attack just a script running on some box.
to forum · permalink · · 2009-11-09 12:08:59 · Reply to this

livewireless

join:2006-11-03
La Jolla, CA		 Interesting. Yeah, I hadn't yet pulled the Shotgun out of the closet. Didn't really think it was harmfull. I'd just like to get a hold of these goons for exercise.
to forum · permalink · · 2009-11-09 12:36:33 · Reply to this


viperm
Carpe Diem
Premium
join:2002-07-09
Winchester, CA

reply to livewireless
in winbox go into IP/services and turn off FTP. SSH etc and that wont happen. Now if you need FTP or SSH access to you mikrotik just use NON standard ports..

We see this all the time we dont turn on FTP or SSH at all and if we do we do it only for as long as we need it open..
--
ComTrain Certified Tower Climber. American Tower Certified approved contractor. Wireless consultants.
to forum · permalink · · 2009-11-09 12:51:28 · Reply to this


Inssomniak
Premium
join:2005-04-06
Cayuga, ON
said by viperm See Profile :

in winbox go into IP/services and turn off FTP. SSH etc and that wont happen. Now if you need FTP or SSH access to you mikrotik just use NON standard ports..

We see this all the time we dont turn on FTP or SSH at all and if we do we do it only for as long as we need it open..
Ya this a good option, I only turn on FTP when I need it.
to forum · permalink · · 2009-11-09 13:08:38 · Reply to this

slipstream1
Premium
join:2005-11-15
Jacksonville, TX		reply to livewireless
On my RouterOS installs, I turn off ssh and ftp, because I don't generally need those services.
to forum · permalink · · 2009-11-09 14:40:01 · Reply to this

livewireless

join:2006-11-03
La Jolla, CA

 So In my case the solution would be to change ports.
I have a camera on motion detection sending images via ftp to the RouterOS H-drive. I'm trying to pack as much as I can on that box. The location is Tiny. Small knik-nack tourist shop probably 15 ft x 20 ft. So as one can imagine, one needs to conserve space.
to forum · permalink · · 2009-11-09 16:41:58 · Reply to this

gunther_01
Premium
join:2004-03-29
Saybrook, IL		 you could just deny FTP from everyone but your camera.
to forum · permalink · · 2009-11-09 16:51:11 · Reply to this
-
Forums » Industry Forums » Wireless Service ProvidersCanopy SM question/issue »
« Motorola Canopy 5.4 Ghz anyone use them yet?  

Saturday, 28-Nov 03:36:43 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [121] Time Warner Cable Fires Broadside At Broadcasters
· [112] New AT&T Ad Campaign Hits Back At Verizon
· [96] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [71] TiVo Sees Record Customer Losses
· [69] In-Flight Internet Headed For Bumpy Landing?
· [66] Verizon CEO: Hulu Will Be Dead Soon
· [62] Thanksgiving Open Thread
· [50] Weekend Open Thread
· [40] EFF Wages War On Fine Print
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· [ PVP] 3.2 DK PvP D/W Spec... [World of Warcraft]
· Backstab vs screws (not which to use) [Home Repair & Improvement]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· DIR-655 New Beta 1.32b09 [D-Link]
· 5 hour energy for diabetic [General Questions]
· [Newsgroups] Newzleech down? [Filesharing Software]
· Leveling to 85 [World of Warcraft]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]
· how to reset Mikrotik with Netinstall [Wireless Service Providers]