From owner-freebsd-questions@FreeBSD.ORG Wed Mar 2 07:53:37 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7D70216A4CE for ; Wed, 2 Mar 2005 07:53:37 +0000 (GMT) Received: from mail.rot-1.de (rot-1.de [213.146.120.136]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8190543D31 for ; Wed, 2 Mar 2005 07:53:36 +0000 (GMT) (envelope-from stevan@rot-1.de) Received: from mail.rot-1.de (localhost.rot-1.de [127.0.0.1]) by mail.rot-1.de (8.12.10/8.12.10) with ESMTP id j227rJvj023620; Wed, 2 Mar 2005 08:53:19 +0100 (CET) (envelope-from stevan@mail.rot-1.de) Received: from localhost (stevan@localhost)j227rIZL023617; Wed, 2 Mar 2005 08:53:18 +0100 (CET) (envelope-from stevan@mail.rot-1.de) Date: Wed, 2 Mar 2005 08:53:18 +0100 (CET) From: Stevan Tiefert To: "Eugene M. Minkovskii" In-Reply-To: <20050302074659.GA22958@mccme.ru> Message-ID: <20050302085135.B23556@mail.rot-1.de> References: <20050302075507.P23359@mail.rot-1.de> <20050302074659.GA22958@mccme.ru> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=koi8-r Content-Transfer-Encoding: QUOTED-PRINTABLE cc: freebsd-questions@freebsd.org Subject: Re: sshd X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 02 Mar 2005 07:53:37 -0000 On Wed, 2 Mar 2005, Eugene M. Minkovskii wrote: > On Wed, Mar 02, 2005 at 08:00:13AM +0100, Stevan Tiefert wrote: > " Hello list, > " > " when I am watching the /var/log/auth.log I see many missed logins from > " IP-addresses I never tried to login from. Am I right that they is a hac= ker > " trying to login on my mashine, because he was using loginnames I never > " created on my mashine like patrick, lydia, green, admin, and so on...? > " > " With regards > " Stevan Tiefert > > It seems to you are right. If you know that you go to you mashine > only from one or two IP, you can write it in your firewall. For > example, if you use ipfw: > > ext_if=3Drl0 > trusted_ip=3D1.2.3.4,3.4.2.1 > ipfw add allow tcp from $trusted_ip to me ssh in recv $ext_if > ipfw add allow tcp from me ssh to $trusted_ip out xmit $ext_if > > Or something else. > > > " _______________________________________________ > " freebsd-questions@freebsd.org mailing list > " http://lists.freebsd.org/mailman/listinfo/freebsd-questions > " To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd= =2Eorg" > > -- > Sensory yours, Eugene Minkovskii > =F3=C5=CE=D3=CF=D2=CE=CF =D7=C1=DB, =E5=D7=C7=C5=CE=C9=CA =ED=C9=CE=D8= =CB=CF=D7=D3=CB=C9=CA > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.o= rg" > Thanks Eugene, but I can not close myself out with a firewall. I need the access to my system over the internet. Am I right that in this case, only a good password is protecting me? With regards Stevan Tiefert