From owner-freebsd-questions@FreeBSD.ORG Tue Oct 26 04:52:29 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 88E0416A4CE for ; Tue, 26 Oct 2004 04:52:29 +0000 (GMT) Received: from redtick.homeunix.com (adsl-68-89-248-14.dsl.okcyok.swbell.net [68.89.248.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id F3AE643D41 for ; Tue, 26 Oct 2004 04:52:28 +0000 (GMT) (envelope-from boxend@redtick.homeunix.com) Received: from redtick.homeunix.com (localhost.homeunix.com [127.0.0.1]) i9PIYWTB072093; Mon, 25 Oct 2004 13:34:32 -0500 (CDT) (envelope-from boxend@redtick.homeunix.com) Received: (from boxend@localhost) by redtick.homeunix.com (8.12.10/8.12.10/Submit) id i9PIYW7j072092; Mon, 25 Oct 2004 13:34:32 -0500 (CDT) (envelope-from boxend) Date: Mon, 25 Oct 2004 13:34:31 -0500 From: Mark To: Steve Warwick Message-ID: <20041025183431.GA72036@redtick.homeunix.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.2.1i cc: freebsd-questions@freebsd.org Subject: Re: Ssh security with hosts.allow X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Oct 2004 04:52:29 -0000 I moved sshd off the standard port of 22, added a AllowUsers line, added a AllowGroups line, added a MaxStartups 8:30:10, I'd say taking the service to a nonstandard port helped more than anything. Logs have not shown an attempt after the move. On Mon, Oct 25, 2004 at 10:38:44AM -0700, Steve Warwick wrote: > Hi All, > > Since implementing a hosts.allow "deny" on SSHD for all but my IP I am > seeing a slew of ssh attempts from overseas. > > My questions are: > > Is a good password and hosts.allow enough to keep out the bad guys? > > Is this normal? (I assume these attempts are automated) > > Thanks > > Steve > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" -- ============================================================================== The information contained in this communication is confidential, private, proprietary, or otherwise privileged and is intended only for the use of the addressee. Unauthorized use, disclosure, distribution or copying is strictly prohibited and may be unlawful. If you have received this communication in error, please notify the sender immediately. ==============================================================================