Year: 2013

SSH dynamic black list

Slashdot runs the post on how bots are now trying higher ports for SSH password guessing. This is not a problem for those who do key-based authentication, but for those who have to have password authentication enabled, there is plenty of good advice in the comments to the post. One of the comments provides this handy iptables-based dynamic black list:

iptables --new-chain SSHTHROTTLE
iptables --append SSHTHROTTLE --match recent --name bad_actors --update --seconds 86400 --jump DROP
iptables --append SSHTHROTTLE --match hashlimit --hashlimit-name ssh_throttle --hashlimit-upto 5/hour --hashlimit-mode srcip --hashlimit-burst 2 --jump ACCEPT
iptables --append SSHTHROTTLE --match recent --name bad_actors --set --jump DROP
iptables --append INPUT --in-interface ext+ --proto tcp --match conntrack --ctstate NEW --dport 22 --syn --jump SSHTHROTTLE

I haven’t tried it out myself yet, but I’m saving it here for the next time I have a server with password-based authentication SSH.

Row the boat

Big Picture blog has an excellent collection of photographs themed “Shoreline“. Go, check it out. There are some really amazing images.

Google Reader is retiring

These are sad, sad news… Google is retiring their awesome Google Reader product.

We launched Google Reader in 2005 in an effort to make it easy for people to discover and keep tabs on their favorite websites. While the product has a loyal following, over the years usage has declined. So, on July 1, 2013, we will retire Google Reader. Users and developers interested in RSS alternatives can export their data, including their subscriptions, with Google Takeout over the course of the next four months.

Yes, I know, it’s not now, and I can get all my subscription data, but it’s still sad. I guess it’s time to give BazQux Reader a little bit more attention. Any other worthy alternatives?

P.S.: Slashdot discussion provides some …

Daily dose of Instagram

The RedHat of Drupal

Matt Mullenweg shares a piece of hilarious SPAM he received. This. Is. CLASSIC!

I apologize for the cold email. I was researching Automattic , Inc. and wanted to ask you if there was any gaps/pains within your CMS and website. I work for the “Redhat of Drupal”, (Acquia) and we have seen an explosion of Drupal use in the Media, News, and Entertainment Industry.

Some companies using Drupal/Acquia include Warner Music, Maxim, NBC Universal, and NPR.
If you are evaluating your current system or are looking into new web projects, I would love to connect and discuss Drupal as an option.

Would it make sense to connect on this? If there is someone better at Automattic , Inc. to speak with, perhaps you could point me in the right direction?