your favourite method of dealing with ssh brute force attacks
cemeyer at u.washington.edu
Wed Mar 17 22:05:39 UTC 2010
On Wed, 17 Mar 2010 22:55:48 +0100
Michał Piotrowski <mkkp4x4 at gmail.com> wrote:
> I recetly had 30 hours of ssh brute force attack on my system. I'm
> using strong passwords, but still can be geneated from /dev/random, so
> I switched to rsa authentication. What's your favourite way to deal
> with such attacks? Please describe pros and cons.
'denyhosts' is in Fedora as well and works great. Use AllowUser lines
in your global ssh configuration and only allow known good users /
source addresses (if that's possible in your setup).
Conrad Meyer <cemeyer at u.washington.edu>
More information about the devel