Thousands of ssh probes
Anton
anton at sng.by
Fri Mar 5 13:41:54 UTC 2010
Hello John,
I would suggest you just block ssh acces for everyone.
But, to allow acces for yourself - you could install wonderfull
utility
It listen on specified ports (they could be closed), and, on receiving
p knock t port) it dynamica ruleset, which allows acc
http://www.marksanborn.net/linux/add-port-knocking- to-ssh-for-extra-security/
Friday, March 5, 2010, 3:26:04 PM, you wrote:
> On Fri, Mar 05, 2010 at 07:03:53AM -0600, Progr wrote:
>> On 03/05/10 06:54, John wrote:
>> > My nightly security logs have thousand probes
>> > in them. One day, over 6500. &nb actually
>> > "feel" it in my network performance. & ssh to
>> > a non-standard port - is there a way t
>> > day, they originate from several diffe can't
>> > just put in a static firewall rule. &n ssh
>> > to quit responding to a port or a way
>> > rule in cases like this?
>> Can you not deny all ssh attempts and then certain,
>> trusted IPs?
> Ah, I should have added that I travel a fair am
> have to get to my systems via hotel WiFi or Air
> impossible to predict my originating IP address
> that were not the case, this would be an excell
>> --
>> Yours In Christ,
>> PIT
>> Emails are not formal business letters, wha want.
>> Original content copyright under the OWL&nb heon.org
>> Please do not CC me. If I'm posting to a li subscribed.
--
Best regards,
Anton
Administrator
Feel free to contact me
via ICQ 363780596
via Skype dobryak47
via phone +375 29 3320987
References
1. 3D"http://owl.apotheon.org"/
2. 3D"mailto:anton at sng.by"
More information about the freebsd-questions
mailing list