My pennywize account is all screwy.... people were breaking in no problem over the weekend... eating up all kinds of b/w.... I think it's all working now though....
Message me to promote nebraskacoeds + network sites...
One limits successful logins - x times in y amount of time
One limits brute force attacks - x tries from each IP
One hides all cgi and password files from robots
One redirects all traffic from password sites to pop up hell
These scripts have cut 50% off of my bandwidth usage.
I have the mrtg graphs from my unmetered server to show it!
All members are valididated and all attackers get sent to pop up hell... o yes, retribution is sweet...
These are custom perl scripts, they work very very well on active sites without loading down your server.
I will work with you to install all of these scripts for $300 for a single domain and we can negotiate a multi domain license. Your bandwidth savings should pay for this software in three months or in my case, much less.
My sites routinely block 60-120 IP addresses of brute force attackers... Automaticly of course. That represents a bunch of extra traffic cause each IP can generate a huge number of login attemps.... Remember, fast servers sell and slow servers suck!
I have complete control and logging of the blacklists and blocked IP addresses.
Hit me up if you are serious about eliminating your monthly bills to Pennywize (or other less complete solution) and locking down your site much more aggressively.
Pennywize is working great for us - no complaints at all.
SIG TOO BIG! Maximum 120x60 button and no more than 3 text lines of DEFAULT SIZE and COLOR. Unless your sig is for a GFY top banner sponsor, then you may use a 624x80 instead of a 120x60.
I use http://www.botbuster.com
We had 665 attempted hacks to-day all failed. Seems to work great., no monthly fees. You pay for it its yours for the life of the site.
Originally posted by Kevin2 We use Strong Box and it has proven itself to be an excellent product. You can find out more about it here Strong Box
StrongBox is different from the scripts others have
mentioned in 3 major ways.
First, rather than trying to strengthen basic user/pass
authorization, StrongBox does away with it entirely and
replaces it with a cryptographically secure
authorization mechanism.
RFC 2617 is the standard for the old fashioned
user/pass method that those scripts still use.
Basic user/pass is, according to the author of the standard,
"not considered to be a secure method of user authentication". ftp://ftp.isi.edu/in-notes/rfc2617.txt
So the gray popup, user/pass idea was not
designed to be secure. StrongBox uses a
method that IS cryptographically secure.
Second, StrongBox is priced MUCH more reasonably,
at only $65 for pay sites or $35 for AVS sites.
This compares to $300-$500 for far less secure approaches.
Third, and most important, by eliminating the username/password
authentication, StrongBox is compatible with the
newest versions of Microsoft Media Player.
The newest versions of Media Player WILL NOT
stream video protected by any other script
mentioned. ONLY StrongBox provides protection
for your videos.
StrongBox also provides an open, extensible API.
Available plugins include anti-slurp plugins to
keep people from downloading your whole site and
many other benefits.
For historical display only. This information is not current:
support@bettercgi.com ICQ 7208627 Strongbox - The next generation in site security Throttlebox - The next generation in bandwidth control Clonebox - Backup and disaster recovery on steroids
Comment