Am 2006-11-16 23:26:34, schrieb Hans du Plooy:
> On Thu, 2006-11-16 at 06:25 -0600, Martin McCormick wrote:
> > I haven't created anything similar for Linux yet or I
> > would be happy to let folks try it out.
>
> http://denyhosts.sourceforge.net/ Should sort it out.
>
> In addition it's alw
force ssh login attempts and how to Disrupt them
>
> Martin McCormick <[EMAIL PROTECTED]>:
> > One day, I noticed one of those attacks starting. What
>
> Much simpler:
>
> % /etc/init.d/ssh stop
>
> sshd is only necessary to ssh *in* to the box. If you
Martin McCormick <[EMAIL PROTECTED]>:
> One day, I noticed one of those attacks starting. What
Much simpler:
% /etc/init.d/ssh stop
sshd is only necessary to ssh *in* to the box. If you've so far
managed to remain ignorant of the sshd attacks going on, you might
need to reconsider wh
On Thu, Nov 16, 2006 at 23:26:34 +0200, Hans du Plooy wrote:
>
> If you ssh in from a static IP, you can always just put an iptable rule
> in to allow ssh connections only from your IP. Unfortunately I'm on
> dynamic, so I can't do that.
You can use knockd to open a port to allow access from a d
In Linux, you can use iptables with the recent module.
--
John L. Fjellstad
web: http://www.fjellstad.org/ Quis custodiet ipsos custodes
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
On Thu, 2006-11-16 at 06:25 -0600, Martin McCormick wrote:
> I haven't created anything similar for Linux yet or I
> would be happy to let folks try it out.
http://denyhosts.sourceforge.net/ Should sort it out.
In addition it's always a good idea to disable root login. One one
server that
also sprach Martin McCormick <[EMAIL PROTECTED]> [2006.11.16.1325 +0100]:
> I haven't created anything similar for Linux yet or I
> would be happy to let folks try it out.
Check out the fail2ban package.
--
Please do not send copies of list mail to me; I read the list!
.''`. martin f.
7 matches
Mail list logo
