From owner-freebsd-questions@FreeBSD.ORG  Thu Apr 26 11:20:55 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 99F3B16A403
	for <freebsd-questions@freebsd.org>;
	Thu, 26 Apr 2007 11:20:55 +0000 (UTC)
	(envelope-from d.hill@yournetplus.com)
Received: from duane.dbq.yournetplus.com (duane.dbq.yournetplus.com
	[65.124.230.214])
	by mx1.freebsd.org (Postfix) with ESMTP id 7218613C448
	for <freebsd-questions@freebsd.org>;
	Thu, 26 Apr 2007 11:20:55 +0000 (UTC)
	(envelope-from d.hill@yournetplus.com)
Received: from duane.dbq.yournetplus.com (duane.dbq.yournetplus.com
	[192.168.1.10])
	by duane.dbq.yournetplus.com (Postfix) with ESMTP id 1826928F879;
	Thu, 26 Apr 2007 11:22:21 +0000 (UTC)
Date: Thu, 26 Apr 2007 11:22:21 +0000 (UTC)
From: Duane Hill <d.hill@yournetplus.com>
X-X-Sender: d.hill@duane.dbq.yournetplus.com
To: Pietro Cerutti <pietro.cerutti@gmail.com>
In-Reply-To: <e572718c0704260412y406a5fb5mdab5f4f0ae50780b@mail.gmail.com>
Message-ID: <20070426112111.G4140@duane.dbq.yournetplus.com>
References: <78814ac0704260357g2bedb91s48c9f8aa7cd4f27f@mail.gmail.com>
	<23ed14b80704260407v39dd1d3al109148fef1d8a0f6@mail.gmail.com>
	<e572718c0704260412y406a5fb5mdab5f4f0ae50780b@mail.gmail.com>
MIME-Version: 1.0
Content-Type: MULTIPART/MIXED; BOUNDARY="0-1758969154-1177586541=:4140"
Cc: freebsd-questions <freebsd-questions@freebsd.org>,
	=?UTF-8?Q?Andreas_Wider=C3=B8e_Andersen?= <wodfer@gmail.com>
Subject: Re: How do I prevent unauthorized ssh login attempts?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Apr 2007 11:20:55 -0000

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

--0-1758969154-1177586541=:4140
Content-Type: TEXT/PLAIN; charset=X-UNKNOWN; format=flowed
Content-Transfer-Encoding: QUOTED-PRINTABLE

On Thu, 26 Apr 2007, Pietro Cerutti wrote:

> On 4/26/07, Andreas Wider=C3=B8e Andersen <wodfer@gmail.com> wrote:
>> On 4/26/07, Arek Czereszewski <arekczer@gmail.com> wrote:
>> >
>> > Andreas Wider=C3=B8e Andersen wrote:
>> > > I'm getting a lot of unauthorized ssh login attempts. I have a prett=
y
>> > basic
>> > > FreeBSD 6.2 setup. I have compiled my own kernel. Here's what I get=
=20
> from
>> > my
>> > > daily security run output:
>> > [...]
>> >
>> > Run sshd on other port.
>> > And say about this your ssh users.
>>
>>
>> Can I change the ssh port on a live server somehow without getting locke=
d
>> out? The server is on a remote co-location a flight away from me.
>
> Yes you can. SSH will keep your connection active until you log out,
> then you can log in using the new port

I will add the fact you will want to keep the current connection live and=
=20
test after you make the change with a new connection. That way if the new=
=20
connection fails, you still have a "foot in the door".
--0-1758969154-1177586541=:4140--