ssh under attack - sessions in accepted state hogging CPU

[Matt Emmerton]

> > I know there's not much I can do about the brute force attacks, but will 
> > upgrading openssh avoid these stuck connections?
>
> 1. switch over to using solely RSA keys

In the works; I have too many users to convert :(

> 2. switch to a non-standard port

This is not attractive, even though it would be effective.  I tried this 
once already and my support volume skyrocketed.

> 3. what version of openssh are you currently using?

Whatever ships with 8.0-REL, which appears to be:


Best

James=