ssh under attack - sessions in accepted state hogging CPU
matt at gsicomp.on.ca
Tue Aug 10 03:36:57 UTC 2010
> > I know there's not much I can do about the brute force attacks, but will
> > upgrading openssh avoid these stuck connections?
> 1. switch over to using solely RSA keys
In the works; I have too many users to convert :(
> 2. switch to a non-standard port
This is not attractive, even though it would be effective. I tried this
once already and my support volume skyrocketed so I had to switch back.
> 3. what version of openssh are you currently using?
Whatever ships with 8.0-REL, which appears to be:
OpenSSL 0.9.8k 25 Mar 2009
More information about the freebsd-questions