Block IP
Graham Menhennitt
gmenhennitt at optusnet.com.au
Thu Dec 21 20:44:46 PST 2006
Christopher Hilton wrote:
> If it's at all possible switch to using public keys for authentication
> with ssh and disallow password authentication. This completely stops
> the brute forcing attacks from filling up your periodic security mail.
Are you sure about that? I only allow PublickeyAuthentication ssh2
connections but I get lots of security mail messages like:
Nov 16 01:44:08 maxwell sshd[70067]: Invalid user marcos from 202.54.49.7
Nov 16 01:44:23 maxwell sshd[70067]: reverse mapping checking getaddrinfo for 49-7.broadband.vsnl.net.in failed - POSSIBLE BREAKIN ATTEMPT!
Graham
More information about the freebsd-stable
mailing list