pure-ftpd login attempts cleartext
Posted: 15 Feb 2014, 22:43
Hello,
it will be really nice if we could detect massive pure-ftpd non TLS connection, yesterday i had log file of about 25k login attempts trying to login using non TLS connection which i disallow, is there any chance that you may make a an option to track those messages and block the ips if they exceed certain number of error messages such as 20.
those are the messages im talking about
Feb 14 11:30:52 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:30:58 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:03 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:05 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:07 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:08 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:10 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:12 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Thank you.
it will be really nice if we could detect massive pure-ftpd non TLS connection, yesterday i had log file of about 25k login attempts trying to login using non TLS connection which i disallow, is there any chance that you may make a an option to track those messages and block the ips if they exceed certain number of error messages such as 20.
those are the messages im talking about
Feb 14 11:30:52 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:30:58 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:03 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:05 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:07 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:08 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:10 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Feb 14 11:31:12 server pure-ftpd: (?@27.x.x.x) [WARNING] Sorry, cleartext sessions are not accepted on this server.#012Please reconnect using SSL/TLS security mechanisms.
Thank you.