Date: Fri, 5 Mar 2010 06:54:46 -0600 From: John <john@starfire.mn.org> To: freebsd-questions@freebsd.org Subject: Thousands of ssh probes Message-ID: <20100305125446.GA14774@elwood.starfire.mn.org>
next in thread | raw e-mail | index | archive | help
My nightly security logs have thousands upon thousands of ssh probes in them. One day, over 6500. This is enough that I can actually "feel" it in my network performance. Other than changing ssh to a non-standard port - is there a way to deal with these? Every day, they originate from several different IP addresses, so I can't just put in a static firewall rule. Is there a way to get ssh to quit responding to a port or a way to generate a dynamic pf rule in cases like this? -- John Lind john@starfire.MN.ORG
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20100305125446.GA14774>