Date: Mon, 25 Oct 2004 13:34:31 -0500 From: Mark <boxend@redtick.homeunix.com> To: Steve Warwick <ukla@comcast.net> Cc: freebsd-questions@freebsd.org Subject: Re: Ssh security with hosts.allow Message-ID: <20041025183431.GA72036@redtick.homeunix.com> In-Reply-To: <BDA28834.A1E6%ukla@comcast.net> References: <BDA28834.A1E6%ukla@comcast.net>
next in thread | previous in thread | raw e-mail | index | archive | help
I moved sshd off the standard port of 22, added a AllowUsers line, added a AllowGroups line, added a MaxStartups 8:30:10, I'd say taking the service to a nonstandard port helped more than anything. Logs have not shown an attempt after the move. On Mon, Oct 25, 2004 at 10:38:44AM -0700, Steve Warwick wrote: > Hi All, > > Since implementing a hosts.allow "deny" on SSHD for all but my IP I am > seeing a slew of ssh attempts from overseas. > > My questions are: > > Is a good password and hosts.allow enough to keep out the bad guys? > > Is this normal? (I assume these attempts are automated) > > Thanks > > Steve > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" -- ============================================================================== The information contained in this communication is confidential, private, proprietary, or otherwise privileged and is intended only for the use of the addressee. Unauthorized use, disclosure, distribution or copying is strictly prohibited and may be unlawful. If you have received this communication in error, please notify the sender immediately. ==============================================================================
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041025183431.GA72036>