Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

Click here to return to the 'Disable ssh access for password-guessing bots' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Disable ssh access for password-guessing bots
Authored by: foilpan on Oct 10, '08 12:40:36PM

it would be easier to use /etc/hosts.allow and /etc/hosts.deny in conjunction with running ssh on a different port and disabling normal typed logins in favor or keys.

i do that for most of my clients' servers if ssh is allowed inbound through their firewalls. these simple measures don't prevent the type of dictionary attacks you mention, but they will prohibit access. ideally, if you're getting hammered, you'd want to manage this at the firewall level by dropping the attackers' connections.

[ Reply to This | # ]