On 10/08/10 05.13, Matt Emmerton wrote:
I'm in the middle of dealing with a SSH brute force attack that is
relentless. I'm working on getting sshguard+ipfw in place to deal with
it,
but in the meantime, my box is getting pegged because sshd is accepting
some
connections which are getting stu
On 10/08/10 05.13, Matt Emmerton wrote:
I'm in the middle of dealing with a SSH brute force attack that is
relentless. I'm working on getting sshguard+ipfw in place to deal with it,
but in the meantime, my box is getting pegged because sshd is accepting some
connections which are getting stuck
On 8/9/2010 8:13 PM, Matt Emmerton wrote:
Hi all,
I'm in the middle of dealing with a SSH brute force attack that is
relentless. I'm working on getting sshguard+ipfw in place to deal
with it, but in the meantime, my box is getting pegged because sshd
is accepting some connections which are get
On 10/08/2010 15:25, Dave wrote:
On 8/9/2010 8:13 PM, Matt Emmerton wrote:
Hi all,
I'm in the middle of dealing with a SSH brute force attack that is
relentless. I'm working on getting sshguard+ipfw in place to deal
with it, but in the meantime, my box is getting pegged because sshd
is accep
In freebsd-questions Digest, Vol 323, Issue 3, Message: 35
On Mon, 9 Aug 2010 23:36:57 -0400 "Matt Emmerton" wrote:
> > > I know there's not much I can do about the brute force attacks, but will
> > > upgrading openssh avoid these stuck connections?
> >
> > 1. switch over to using solely RSA
On 8/9/2010 8:13 PM, Matt Emmerton wrote:
> Hi all,
>
> I'm in the middle of dealing with a SSH brute force attack that is
> relentless. I'm working on getting sshguard+ipfw in place to deal
> with it, but in the meantime, my box is getting pegged because sshd
> is accepting some connections whic
Hi, Matt--
On Aug 9, 2010, at 8:13 PM, Matt Emmerton wrote:
> I'm in the middle of dealing with a SSH brute force attack that is
> relentless. I'm working on getting sshguard+ipfw in place to deal with it,
> but in the meantime, my box is getting pegged because sshd is accepting some
> connect
One thing I don't see mentioned a lot is port knocking. It's not perfect
but it does have it's uses.
Since it sounds like you have a lot of users that need to connect you
might be able to adapt it to your situation. I haven't tried this
specific port knocking sequence but you could setup a kno
Hi Matt,
>
> I know there's not much I can do about the brute force attacks, but will
> upgrading openssh avoid these stuck connections?
1. switch over to using solely RSA keys
2. switch to a non-standard port
3. what version of openssh are you currently using?
Best
James_
> I know there's not much I can do about the brute force attacks, but will
> upgrading openssh avoid these stuck connections?
1. switch over to using solely RSA keys
In the works; I have too many users to convert :(
2. switch to a non-standard port
This is not attractive, even though it wou
> I know there's not much I can do about the brute force attacks, but will
> upgrading openssh avoid these stuck connections?
1. switch over to using solely RSA keys
In the works; I have too many users to convert :(
2. switch to a non-standard port
This is not attractive, even though it wo
11 matches
Mail list logo
