ssh under attack - sessions in accepted state hogging CPU

Matt Emmerton matt at
Tue Aug 10 03:36:57 UTC 2010

> > I know there's not much I can do about the brute force attacks, but will
> > upgrading openssh avoid these stuck connections?
> 1. switch over to using solely RSA keys

In the works; I have too many users to convert :(

> 2. switch to a non-standard port

This is not attractive, even though it would be effective.  I tried this 
once already and my support volume skyrocketed so I had to switch back.

> 3. what version of openssh are you currently using?

Whatever ships with 8.0-REL, which appears to be:

OpenSSL> version
OpenSSL 0.9.8k 25 Mar 2009


More information about the freebsd-questions mailing list