gmenhennitt at optusnet.com.au
Thu Dec 21 20:44:46 PST 2006
Christopher Hilton wrote:
> If it's at all possible switch to using public keys for authentication
> with ssh and disallow password authentication. This completely stops
> the brute forcing attacks from filling up your periodic security mail.
Are you sure about that? I only allow PublickeyAuthentication ssh2
connections but I get lots of security mail messages like:
Nov 16 01:44:08 maxwell sshd: Invalid user marcos from 188.8.131.52
Nov 16 01:44:23 maxwell sshd: reverse mapping checking getaddrinfo for 49-7.broadband.vsnl.net.in failed - POSSIBLE BREAKIN ATTEMPT!
More information about the freebsd-stable