Date: Thu, 7 Oct 2004 15:15:25 -0700 (PDT) From: Luke <luked@pobox.com> To: freebsd-questions@freebsd.org Subject: Protecting SSH from brute force attacks Message-ID: <Pine.NEB.4.60.0410071514530.27025@mx.freeshell.org>
next in thread | raw e-mail | index | archive | help
There are several script kiddies out there hitting my SSH server every day. Sometimes they attempt to brute-force their way in trying new logins every second or so for hours at a time. Given enough time, I fear they will eventually get in. Is there anything I can do to hinder them? I'd like to ban the IP after 50 failed attempts or something. I'd heard that each failed attempt from a source was supposed to make the daemon respond slower each time, thus limiting the usefulness of brute force attacks, but I'm not seeing that behavior.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.4.60.0410071514530.27025>