[svlug] What to do about ssh hack attempts?
cqx at nefud.org
Wed Feb 1 08:23:55 PST 2006
I use the DenyHosts script to keep my /etc/hosts.deny updated.
Jeff Walter <jeffw at gentoo.org> wrote:
>Jon Zweig wrote:
>> Besides disabling root login, is there anything I ought to be doing
>> about this? Is there a way to harden against these ip addresses?
> Personally, I block SSH access from all of China, which has eliminated
>around 60% of all SSH attacks. Aside from that I also block hosts which are the
>source of more than 50 failures in any 20 minute period. Works pretty well.
>svlug mailing list
>svlug at lists.svlug.org
More information about the svlug