Site Links
Home
Features
Documentation
Pricing & Order
Members Area
Support Options
UBBDev.com
UBBWiki.com
Who's Online Now
2 registered members (JAISP, Gizmo), 60 guests, and 105 spiders.
Key: Admin, Global Mod, Mod
Member Spotlight
JAISP
JAISP
Pennsylvania
Posts: 1,332
Joined: February 2007
Show All Member Profiles 
Top Posters(30 Days)
isaac 21
Ruben 10
Gizmo 8
Geoff 3
FREAK 2
Slaz 2
DennyP 1
Latest Photos
Testing to drag photos
Comfortable Cats
Test
BSA photos
Chinese Buddhist temple.
Previous Thread
Next Thread
Print Thread
LInux Firewall for UBB #253304
08/07/13 12:27 AM
08/07/13 12:27 AM
Bill B  Offline
OP
enthusiast
Joined: Oct 2006
Posts: 370
Issaquah, WA
I'm still suffering from hackers hitting our UBB forum. We've managed to keep them out, but they consume cyles from us that cause a SLOWDOWN nearly every day. I've seen 80-140 login attempts per minute!! The majority of these are from China.

I added an htacces file blocking thousands of IP addresses. It seems to work, but now I get hundreds (thousands) of failed attempts to login.

My question is - does anyone have experience with managing the firewall services on Linux? It seems that that would be a better place to block these hack attempts.

Maybe you can couch your response as a "Recommended Suggestion for ALL Linux-Hosted UBB's". Thanks.


--BIll B
Express Hosting
Express Hosting "We are the official hosting company of UBB.threads. Ask us about our free migration services to migrate your UBB.threads installation."
Re: LInux Firewall for UBB [Re: Bill B] #253306
08/07/13 01:40 AM
08/07/13 01:40 AM
Gizmo  Online Tapedshut
UBB.threads Developer
Joined: Jun 2006
Posts: 16,956
Portland, OR; USA
A CDN such as www.cloudflare.com would filter abusive users out; it's actually what it's designed to do, and you can set how anal retentive you'd like it to be and it does it on it's own automatically.

Cloudflare has a free version, which I use on all of my UBB sites, that works just fine.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: LInux Firewall for UBB [Re: Bill B] #253307
08/07/13 02:15 AM
08/07/13 02:15 AM
Bill B  Offline
OP
enthusiast
Joined: Oct 2006
Posts: 370
Issaquah, WA
Thanks Giz. I installed CloudFlare about 5 or 6 weeks ago. We noticed an immediate and significant improvement in performance.

But lately, the brute-force attacks are still clogging our Error log files - and once or twice a day, NO ONE can log on to our forum. Everyone is completely blocked for 30 - 90 minutes.

The error logs for those times show 80-140 failed attempts (per minute) from a single overseas IP address.

So, I'm trying to stop them BEFORE they get to my domain process. I want to filter them at the firewall. CloudFlare has been good, but it's still got leaks.

Having said that, maybe I need to look at "tightening up" the CloudFlare settings some more. I'll look at that too.


--BIll B
Re: LInux Firewall for UBB [Re: Bill B] #253308
08/07/13 02:46 AM
08/07/13 02:46 AM
Gizmo  Online Tapedshut
UBB.threads Developer
Joined: Jun 2006
Posts: 16,956
Portland, OR; USA
Yeah there's a bunch of different security options (and some of their paid options add a lot of features to the mix too)


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: LInux Firewall for UBB [Re: Bill B] #253309
08/07/13 01:33 PM
08/07/13 01:33 PM
Bill B  Offline
OP
enthusiast
Joined: Oct 2006
Posts: 370
Issaquah, WA
So besides adding CloudFlare, does it make sense to add a lot of effort into building up the Linux firewall? For example adding thousands of IP addresses to it?

I'm asking since this is probably something that I'd hire out. I haven't done it before and I'm probably better at keeping my nose in PHP and MySQL development for our club features.


--BIll B
Re: LInux Firewall for UBB [Re: Bill B] #253317
08/07/13 04:42 PM
08/07/13 04:42 PM
Gizmo  Online Tapedshut
UBB.threads Developer
Joined: Jun 2006
Posts: 16,956
Portland, OR; USA
Well, the way dynamic ip's work it'd be kind of pointless; if you could figure out what tool they're using you could attempt to block it, but if they're smart enough they're on a dynamic ip and using proxy servers and you'd still ultimately be screwed...

Have you asked your webhost for some advice on the issue?


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: LInux Firewall for UBB [Re: Bill B] #253319
08/08/13 12:28 AM
08/08/13 12:28 AM
Bill B  Offline
OP
enthusiast
Joined: Oct 2006
Posts: 370
Issaquah, WA
Yeh... they're the ones that told me (Sunday night) that I should hire someone to install (and manage) a firewall. But they did add a list of banned IP's to the iptables file for me.



--BIll B
Re: LInux Firewall for UBB [Re: Bill B] #253337
08/10/13 09:43 PM
08/10/13 09:43 PM
Bill B  Offline
OP
enthusiast
Joined: Oct 2006
Posts: 370
Issaquah, WA
Does anyone understand the difference between the FREE and PRO versions of CloudFlare? I'm ready to pay them but I can't see where it is going to add any additional help in stopping aggressive hackers. The firewall that they add only seems targeted towards static html pages - not the UBB forum.

Any thoughts on this?


--BIll B
Re: LInux Firewall for UBB [Re: Bill B] #253339
08/10/13 10:17 PM
08/10/13 10:17 PM
Gizmo  Online Tapedshut
UBB.threads Developer
Joined: Jun 2006
Posts: 16,956
Portland, OR; USA
They have a comparison here but other than that I suppose you could go through google searches to find 3rd party comparison's...

Personally, I think the free version is pretty good for most sites, let me know if you find it useful if you go paid.


I am a Web Development Contractor, I do not work for UBBCentral. I have provided free User to User Support since the beginning of these support forums.
Forums: A Gardeners Forum Scouters World
UBB.threads: UBBWiki, UBB Styles, UBB.Sitemaps
Longtime Supporter & Resident Post-A-Holic
VNC Web Services: Code Modifications, Upgrades, Styling, Coding Services, Disaster Recovery, and more!
Re: LInux Firewall for UBB [Re: Bill B] #253373
08/16/13 02:29 PM
08/16/13 02:29 PM
UBBSystems  Offline
Sysop
Joined: Jun 2011
Posts: 125

Last edited by UBBSystems; 08/16/13 02:29 PM.
Re: LInux Firewall for UBB [Re: Bill B] #253446
08/22/13 02:25 AM
08/22/13 02:25 AM
Bill B  Offline
OP
enthusiast
Joined: Oct 2006
Posts: 370
Issaquah, WA
Thanks. I have PLESK installed by default. I'd have to see whether I can get cPanel instead.


--BIll B

Shout Box
Today's Birthdays
No Birthdays
Recent Topics
UBB.threads 7.6.2 - Released
by isaac. 09/17/18 08:08 AM
7.6.2 Changelog Discussion
by isaac. 09/17/18 06:35 AM
Upgrade Documentation
by DennyP. 09/15/18 03:55 PM
PHP 7.2
by Geoff. 09/12/18 10:22 PM
Email Cleanup-Is it possible?
by Ruben. 09/06/18 11:25 AM
Forum Statistics
Forums36
Topics35,139
Posts191,439
Members12,106
Most Online978
Jun 24th, 2007
Random Image
Powered by UBB.threads™ PHP Forum Software 7.6.2