How do I stop bruteforce SSH login attempt?
Jason Straight
jason at jeetkunedomaster.net
Wed Apr 12 18:50:25 UTC 2006
On Wednesday 12 April 2006 12:46, Kent Borg wrote:
> On Wed, Apr 12, 2006 at 08:12:47AM -0400, Jason Straight wrote:
> > It's probably a zombie machine, what do zombies do? They scan for
> > the open port they want to attack, in your case 22. Change your ssh
> > port to 2022 or something and you won't have a problem any more.
>
> The day I learned the lesson of not reusing passwords was the day a
> machine I had an account on was broken into. And that machine had its
> sshd on a non-standard port. Don't count on non-standard ports
> offering much security.
>
> Better to have good passwords.
I agree, it's certainly not gospel to live by, but being obscure does help.
It's why snipers don't wear red suits and stand out in the open to take their
shots. I barely ever have anything connect to my ssh ports on non standard
ports. When I leave them on 22 they constantly get hammered.
Port knocking would help too.
--
|
| Jason Straight
| SkyCon.net 231-627-3528
| Jabber: leejunfan at jabber.org
| ICQ: 1796276 / AIM: JasonRStraight
| MSN: glock21-45cal at hotmail.com / Yahoo: jasonrstraight
|
More information about the ubuntu-users
mailing list