Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 9 May 2006 07:54:03 -0700 (PDT)
From:      "M. Goodell" <freebsdutah@yahoo.com>
To:        FreeBSD Questions <freebsd-questions@freebsd.org>
Subject:   System Intrustion Detection
Message-ID:  <20060509145403.71699.qmail@web32413.mail.mud.yahoo.com>

next in thread | raw e-mail | index | archive | help
More and more each day I am seeing my root emails contain hundreds of entries like this:
   
  May  8 02:23:35 warpstone sshd[26092]: Failed password for root from 222.185.245.208 port 50519 ssh2
May  8 16:37:41 warpstone ftpd[34713]: FTP LOGIN FAILED FROM 211.44.250.152, Administrator
   
  Basically, people are attemtpting to hack into my server often with a few thousands of attempts each day. What measures can I take to stop these attempts? Is there a way I can detect these attacks and automatically cut them off? Are any of the security ports effective against this?
   
  Thank you!
   
  M Goodell

		
---------------------------------
Yahoo! Messenger with Voice. PC-to-Phone calls for ridiculously low rates.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060509145403.71699.qmail>