Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
gerard at seibercom.net
Mon Nov 13 11:07:53 UTC 2006
On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote:
> I had the same 'problem'. As said it's not realy a problem since FreeBSD
> will hold just fine if you don't have any rather stupid user + pass
> combinations. ( test test or something like that ) Allthough I thought
> it was annoying that my intire log was clouded with those brute force
> attacks so I just set sshd to listen at an other port then 22. Maybe
> that's a acceptable solusion for you ? You can change the ssd port in
Security through obscurity is a bad idea. Rather, use SSH key based
authentication exclusively. Turn off all of the password stuff in
sshd_config. Laugh at the poor fools trying to break in.
Mail from '@gmail' is rejected and/or discarded here. Don't waste
More information about the freebsd-questions