Date: Tue, 19 Jan 2010 02:22:03 +0200 From: Ed Jobs <oloringr@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: /etc/hosts.deniedssh Message-ID: <201001190222.03539.oloringr@gmail.com> In-Reply-To: <201001182239.20153.david@vizion2000.net> References: <201001182239.20153.david@vizion2000.net>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Tuesday 19 January 2010 00:39, David Southwell wrote: > Examples from hosts.deniedssh > I seem to be on the receiving end of a concerted series of unsuccessful > break in attacks on one of our systems. One small part of the attack has > resulted in over 2000 entries in our hosts.deniedssh file in less than 1 > hour. > > I would be interested in any comments on the small example shown below and > any advice. > > Thanks in advance > > David <snip> 2k entries are too much indeed. are you running ssh on port 22? if yes, (and your users are ok with it) you can change it to another port. or maybe, temporary disable ssh login and use cron to enable it again in some time in the future. -- Save the whales. Club a seal instead. [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEABECAAYFAktU+ysACgkQBPpdVEWKA32fugCgzG7T/eZBiNb1MvWOm5jqhvEC y20AoPRAeELJ6s4fmSQihZgrer94YiOf =ISqn -----END PGP SIGNATURE-----help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201001190222.03539.oloringr>