From owner-freebsd-questions@FreeBSD.ORG Mon Oct 25 17:38:43 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CB1FF16A4CE for ; Mon, 25 Oct 2004 17:38:43 +0000 (GMT) Received: from sccrmhc11.comcast.net (sccrmhc11.comcast.net [204.127.202.55]) by mx1.FreeBSD.org (Postfix) with ESMTP id 63D0E43D2D for ; Mon, 25 Oct 2004 17:38:43 +0000 (GMT) (envelope-from ukla@comcast.net) Received: from [192.168.2.101] (c-24-130-114-1.we.client2.attbi.com[24.130.114.1]) by comcast.net (sccrmhc11) with SMTP id <200410251738420110073jo4e>; Mon, 25 Oct 2004 17:38:42 +0000 User-Agent: Microsoft-Entourage/9.0.2509 Date: Mon, 25 Oct 2004 10:38:44 -0700 From: Steve Warwick To: Message-ID: Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit Subject: Ssh security with hosts.allow X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Oct 2004 17:38:43 -0000 Hi All, Since implementing a hosts.allow "deny" on SSHD for all but my IP I am seeing a slew of ssh attempts from overseas. My questions are: Is a good password and hosts.allow enough to keep out the bad guys? Is this normal? (I assume these attempts are automated) Thanks Steve