From owner-freebsd-questions@FreeBSD.ORG Thu Apr 26 11:58:56 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 5FFE216A401 for ; Thu, 26 Apr 2007 11:58:56 +0000 (UTC) (envelope-from wodfer@gmail.com) Received: from nz-out-0506.google.com (nz-out-0506.google.com [64.233.162.234]) by mx1.freebsd.org (Postfix) with ESMTP id 12CB813C455 for ; Thu, 26 Apr 2007 11:58:55 +0000 (UTC) (envelope-from wodfer@gmail.com) Received: by nz-out-0506.google.com with SMTP id r28so730447nza for ; Thu, 26 Apr 2007 04:58:55 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=pnATqybP0IVSgag2VS/uC/js9UP7iZvTURyJXB/dBAx/eCAk2xtxLDpWVe7SqDI3vNTMX5YOE7eoO9a5xxjh5fWa1fLS53OS4njbLlgSGmyzgKr+0y2Ez4dmWrD0j/M1r6XrzsVfjJaqMbd2GxJFghAyLcX/nDy683SF6WCNPss= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=j+s4DorSYVjLY/bU3UduUuc3iSP0RcGLZfaWS+bgtLeOHECM4/BV+9PLESjrOts5zvS+iN2Od1uuw0jAS872gDT49Wg8pKXuc/FHynV7PiJNMSK96KLOyNLIEn3kyqFpwfOABiyDyb5aQ1Z0f2QlGfr4xDMhtfdZR46jsihBBCI= Received: by 10.114.93.17 with SMTP id q17mr554690wab.1177588734603; Thu, 26 Apr 2007 04:58:54 -0700 (PDT) Received: by 10.114.193.12 with HTTP; Thu, 26 Apr 2007 04:58:54 -0700 (PDT) Message-ID: <23ed14b80704260458l204c01c9xa4398be47610200a@mail.gmail.com> Date: Thu, 26 Apr 2007 13:58:54 +0200 From: "=?ISO-8859-1?Q?Andreas_Wider=F8e_Andersen?=" To: freebsd-questions In-Reply-To: <20070426112111.G4140@duane.dbq.yournetplus.com> MIME-Version: 1.0 References: <78814ac0704260357g2bedb91s48c9f8aa7cd4f27f@mail.gmail.com> <23ed14b80704260407v39dd1d3al109148fef1d8a0f6@mail.gmail.com> <20070426112111.G4140@duane.dbq.yournetplus.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: How do I prevent unauthorized ssh login attempts? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Apr 2007 11:58:56 -0000 On 4/26/07, Duane Hill wrote: > > On Thu, 26 Apr 2007, Pietro Cerutti wrote: > > > On 4/26/07, Andreas Wider=F8e Andersen wrote: > >> On 4/26/07, Arek Czereszewski wrote: > >> > > >> > Andreas Wider=F8e Andersen wrote: > >> > > I'm getting a lot of unauthorized ssh login attempts. I have a > pretty > >> > basic > >> > > FreeBSD 6.2 setup. I have compiled my own kernel. Here's what I ge= t > > from > >> > my > >> > > daily security run output: > >> > [...] > >> > > >> > Run sshd on other port. > >> > And say about this your ssh users. > >> > >> > >> Can I change the ssh port on a live server somehow without getting > locked > >> out? The server is on a remote co-location a flight away from me. > > > > Yes you can. SSH will keep your connection active until you log out, > > then you can log in using the new port > > I will add the fact you will want to keep the current connection live and > test after you make the change with a new connection. That way if the new > connection fails, you still have a "foot in the door". Thanks! I got it working without having to fly out to the server. :-) Let's see if this will prevent the unauthorized sshd login attempts. Cheers, Andreas