tech-net archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: shutting out dictionary attacks on ssh passwords



On Mon, 27 Jun 2011 22:54:56 +0200 (CEST)
Hubert Feyrer <hubert%feyrer.de@localhost> wrote:

> On Mon, 27 Jun 2011, Erik E. Fair wrote:
> > For those of us with public IP addresses, what is the most popular
> > and effective way to shut out the various door-knob turners who
> > keep trying account/password combinations again ssh and other such
> > services?
> 
> See http://www.feyrer.de/NetBSD/blog.html/nb_20070116_0041.html

I also wrote a similar SH script:

http://cvs.pulsar-zone.net/cgi-bin/cvsweb.cgi/mmondor/mmsoftware/util/ssh-ids.sh?rev=1.1;content-type=text%2Fplain

But I also recommend disabling PAM and password authentication if
possible.
-- 
Matt


Home | Main Index | Thread Index | Old Index