RE: uh oh. phished accounts listed

Chris,

When I look at the link you provided, I see references only to IntruderAttempts 
and IntruderTimeout; where did you find examples of IntruderLog and 
IntruderReject?

Thanks,

Mike Lynch
Systems Librarian
Middlebury College Libraries
Middlebury, Vermont

-----Original Message-----
From: Chris Gray [mailto:cpgray@xxxxxxxxxxxxxxxxxxxx]
Sent: Fri, February 10, 2006 11:34 AM
To: EZProxy discussion list
Cc: David D. Bibb
Subject: [ezproxy] RE: uh oh. phished accounts listed


Do all of you have the intruder prevention measures enabled in you config 
file?  For example, ours is:

# login spamming protection
# see http://www.usefulutilities.com/support/cfg/intruderattempts/
IntruderLog 25
IntruderTimeout 600
IntruderAttempts 6
IntruderReject 12

Chris Gray
University of Waterloo

"You put seven rabbits in a pen, add five more, and for a while the total
is twelve."  -W.V.O. Quine

On Fri, 10 Feb 2006, Susan M. Lee wrote:

> Chris
>
> Bless his heart sent me a website that had some of our passwords listed
> along with a lot of other libraries.  It was 28 pages.  My boss spent
> the next day and a half notifying everyone on those pages.  Some didn't
> know about it.  Others had found out only after they had been cut off by
> the database vendors due to massive downloading.
>
> Now every morning we check to see who is trying to get in.  China is
> usually at the top of the list followed by Amsterdam and Latin America.
> As we cut off Chinese access, we have noticed it picking up from places
> like New Jersey.
>
>
> ~~~~~~~~~
> Sue
>
> Susan Lee  M.L.S.
> Information Services Librarian
> University of Great Falls
> 1301 20th St South
> Great Falls, MT 59405
>
> VOICE     406-791-5318
> FAX         406-791-5395
>
> http://www.ugf.edu/library/
> mailto:slee@xxxxxxx
>
>
>
> -----Original Message-----
> From: Clay Hill [mailto:dch@xxxxxxxxxxxxxxxxxxx]
> Sent: Friday, February 10, 2006 8:12 AM
> To: EZProxy discussion list
> Subject: [ezproxy] uh oh. phished accounts listed
>
>
> Hello
> this may be old news to the group..I normally lurk, unless I need
> something.
>
> My boss brought this to my attention.If your library is on the public or
> university list..You may want to do something.
> The account that is listed for our school has been disabled.
>
> I hope this helps.
> there are posted phished accounts for libraries listed on the link
> below
>
> http://spaces.msn.com/ningsuncn/PersonalSpace.aspx?_c11_Links:124_listid
> =cns!A5A55A88A4BD0155!124&_c=Links:124&_c02_owner=1
>
>
> Thanks
> Clay
>
>
> Clay Hill
> Webmaster,
> Mississippi State University Libraries
> 662-325-8350
>
>
>
> ---
> You are currently subscribed to ezproxy as: slee@xxxxxxx
> To unsubscribe send a blank email to leave-ezproxy-58098R@xxxxxxxxxxx
>
>
>
> ---
> You are currently subscribed to ezproxy as: cpgray@xxxxxxxxxxxxxxxxxxxx
> To unsubscribe send a blank email to leave-ezproxy-58098R@xxxxxxxxxxx
>

---
You are currently subscribed to ezproxy as: lynch@xxxxxxxxxxxxxx
To unsubscribe send a blank email to leave-ezproxy-58098R@xxxxxxxxxxx

---
You are currently subscribed to ezproxy as: gee-ezproxy@xxxxxxxxx
To unsubscribe send a blank email to leave-ezproxy-58098R@xxxxxxxxxxx