Ssh security with hosts.allow

Mark boxend at
Mon Oct 25 21:52:29 PDT 2004

I moved sshd off the standard port of 22, 
added a AllowUsers line, 
added a AllowGroups line,  
added a MaxStartups 8:30:10,

I'd say taking the service to a nonstandard port helped more than anything.
Logs have not shown an attempt after the move.

On Mon, Oct 25, 2004 at 10:38:44AM -0700, Steve Warwick wrote:
> Hi All, 
> Since implementing a hosts.allow "deny" on SSHD for all but my IP I am
> seeing a slew of ssh attempts from overseas.
> My questions are: 
>     Is a good password and hosts.allow enough to keep out the bad guys?
>     Is this normal? (I assume these attempts are automated)
> Thanks
> Steve
> _______________________________________________
> freebsd-questions at mailing list
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at"


The information contained in this communication is confidential, private,
proprietary, or otherwise privileged and is intended only for the use of the
addressee.  Unauthorized use, disclosure, distribution or copying is strictly
prohibited and may be unlawful.  If you have received this communication in
error, please notify the sender immediately.


More information about the freebsd-questions mailing list