From owner-freebsd-questions@FreeBSD.ORG  Sat Feb  5 08:48:47 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6E2AC16A4CE
	for <freebsd-questions@freebsd.org>;
	Sat,  5 Feb 2005 08:48:47 +0000 (GMT)
Received: from szamoca.krvarr.bc.ca (s142-179-111-232.bc.hsia.telus.net
	[142.179.111.232])
	by mx1.FreeBSD.org (Postfix) with ESMTP id DE5A443D1D
	for <freebsd-questions@freebsd.org>;
	Sat,  5 Feb 2005 08:48:44 +0000 (GMT)
	(envelope-from sandy@krvarr.bc.ca)
Received: from szamoca.krvarr.bc.ca (localhost [127.0.0.1])
	by szamoca.krvarr.bc.ca (8.13.1/8.12.11) with ESMTP id j158mN37012526;
	Sat, 5 Feb 2005 00:48:23 -0800 (PST)
	(envelope-from sandy@szamoca.krvarr.bc.ca)
Received: (from sandy@localhost)
	by szamoca.krvarr.bc.ca (8.13.1/8.12.11/Submit) id j158mMmk012523;
	Sat, 5 Feb 2005 00:48:22 -0800 (PST)
	(envelope-from sandy)
From: Sandy Rutherford <sandy@krvarr.bc.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <16900.34902.204175.909440@szamoca.krvarr.bc.ca>
Date: Sat, 5 Feb 2005 00:48:22 -0800
To: "Ted Mittelstaedt" <tedm@toybox.placo.com>
In-Reply-To: <LOBBIFDAGNMAMLGJJCKNKEDLFAAA.tedm@toybox.placo.com>
References: <20050204060106.GB51807@gothmog.gr>
	<LOBBIFDAGNMAMLGJJCKNKEDLFAAA.tedm@toybox.placo.com>
X-Mailer: VM 7.07 under Emacs 21.3.1
X-krvarr.bc.ca-MailScanner-Information: Please contact postmaster@krvarr.bc.ca
	for more information.
X-krvarr.bc.ca-MailScanner: Not scanned: please contact
	postmaster@krvarr.bc.ca for details.
X-krvarr.bc.ca-MailScanner-From: sandy@szamoca.krvarr.bc.ca
cc: Giorgos Keramidas <keramida@ceid.upatras.gr>
cc: Chris Hodgins <chodgins@cis.strath.ac.uk>
cc: Gert Cuykens <gert.cuykens@gmail.com>
cc: freebsd-questions@freebsd.org
Subject: RE: ssh default security risc
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 05 Feb 2005 08:48:47 -0000

>>>>> On Thu, 3 Feb 2005 22:54:14 -0800, 
>>>>> "Ted Mittelstaedt" <tedm@toybox.placo.com> said:

 > restrictions somehow doesen't exist.  Not to mention that even without a
 > static IP assigned
 > to your home or other locations that you normally ssh in from, it's
 > pretty
 > simple to block off huge chunks of the Internet, particularly blocks
 > assigned
 > to Red China, where a huge amount of cracking and spamming originates
 > from.

For what it's worth (not much), most of the cracking attempts that
have been showing up recently in my logs are from the USA.  Of course,
I can still go ahead and block the entire address range of the ISP.

Sandy