Re: Options for dealing with sshd brute force attacks

To: john%klos.com@localhost
Subject: Re: Options for dealing with sshd brute force attacks
From: Jarle Greipsland <jarle.greipsland%norid.no@localhost>
Date: Sun, 29 Dec 2024 14:25:51 +0100 (CET)

John Klos <john%klos.com@localhost> writes:
> We all know that public facing ssh servers will get tons of
> brute force attacks. That's just a fact of life.
> 
> For many machines, running blocklistd helps tremendously. But
> what happens when blocklistd won't help because npf can't be
> used?
> 
> OpenSSH doesn't use tcpwrappers any longer, but I suppose I
> could launch it from inetd as one option.
The OpenSSH version included in NetBSD (at least until 10.0)
still has the tcpwrappers support.  I use it all the time, and am
very happy that it's still there.
					-jarle
-- 
"Things always look the darkest before they go completely black."

References:
- Options for dealing with sshd brute force attacks
  - From: John Klos

Prev by Date: Re: Options for dealing with sshd brute force attacks
Next by Date: Re: Options for dealing with sshd brute force attacks
Previous by Thread: Re: Options for dealing with sshd brute force attacks
Next by Thread: Re: Options for dealing with sshd brute force attacks
Indexes:

Home | Main Index | Thread Index | Old Index