Posts made by tiagom

Its difficult to suggest without knowing the environment..

The simplest is change passwords if its compromised.

If its behind a firewall you can block traffic on port 22 unless its from your ip..

It looks like you need to set

 DROPBEAR_EXTRA_ARGS="-s"

in the dropbear init file.

https://github.com/mkj/dropbear/blob/master/debian/dropbear.init

*It states Do not configure this file. Edit /etc/default/dropbear instead! in the latest version. Your version maybe older or modified by panasonic since /etc/default/dropbear doesnt exist..

Arg found here

http://linux.die.net/man/8/dropbear

But honestly, if there is a firewall in front of this pbx box it maybe easier to do it there.

What about under /etc/default/dropbear

What distro and pbx are you running so we can stop guessing.

@coliver said in I'm under attack I need help in ssh:

Would be a good idea to setup fail 2 ban as well.

Agreed.

From the original post looks like you are using dropbear ssh.. config should be /etc/config/dropbear

Looks like you need to set

option PasswordAuth 'off'

https://wiki.openwrt.org/doc/uci/dropbear has more details as i couldn't (quickly) find official documentation.

http://superuser.com/questions/694523/netsh-block-all-ip-addresses-in-a-text-file

Sounds like what you are trying to do.

What OS?

@wirestyle22 Ran into that in the past as well, i set it to automatic using nmtui and never have to worry about it again.

Sleep is for the weak or something like that haha

@scottalanmiller Hopefully you celebrate arriving with a drink from that sweet bar.

@scottalanmiller Never thought of that, thats an elegant solution.

@scottalanmiller Long day, how many days are you planning on to get to Texas?

Ok got it working using the CentOS guild. Here is what differed from the guild and what i found unclear.

rails user needs to added to sudoers using visudo under

 root    ALL=(ALL)       ALL

I added

rails   ALL=(ALL)       ALL

The following command fails because the latest activesupport requires Ruby version >= 2.2.2

gem install rails --no-ri --no-rdoc

Had to install v4.2.7 instead of the latest. I used:

gem install activesupport -v 4.2.7
gem install rails -v 4.2.7 --no-ri --no-rdoc

To clear up a question from earlier when you run

rake secret

The output needs to be put in /config/secrets.yml under production: secret_key_base:

The postgresql password needs to be edited in /config/database.yml under production: password:

The following command doesn't work

rails s -e production -b your.ip.add.ress:3000

It should be

rails s -e production -b your.ip.add.ress

The /etc/rc.d/init.d/nginx script has a typo, line 92 is Esac it should be esac

For /opt/nginx/conf/nginx.conf i did not replace the contents with what was provided as the versions differed, instead i just added the following under location

root /home/rails/helpy/public;
passenger_enabled on;
rails_env production;

I commented out the index index.html index.htm

I can provide my /opt/nginx/conf/nginx.conf and /etc/rc.d/init.d/nginx if needed. I could give you the whole vm if needed, i run it under hyper-v.

Also i needed to stop the firewall

service iptables stop

Tried twice both didn't work, very strange. will try again later.

Hopefully they get it fixed

That sucks, had that happen with a mint install as well. It would install but the provided wireless driver had some weird bugs so wireless wouldn't work.

What ended up being the issue?

@FrostyPhoenix my solution would be to use the usb ports to the left of the ethernet cable

Ill take a look at it when i get home, see if i can help you out.