your favourite method of dealing with ssh brute force attacks
Conrad Meyer
cemeyer at u.washington.edu
Wed Mar 17 22:05:39 UTC 2010
On Wed, 17 Mar 2010 22:55:48 +0100
Michał Piotrowski <mkkp4x4 at gmail.com> wrote:
> Hi,
>
> I recetly had 30 hours of ssh brute force attack on my system. I'm
> using strong passwords, but still can be geneated from /dev/random, so
> I switched to rsa authentication. What's your favourite way to deal
> with such attacks? Please describe pros and cons.
>
> Regards,
> Michal
'denyhosts' is in Fedora as well and works great. Use AllowUser lines
in your global ssh configuration and only allow known good users /
source addresses (if that's possible in your setup).
Regards,
--
Conrad Meyer <cemeyer at u.washington.edu>
More information about the devel
mailing list