[lug] DOS ssh attacks
Dave Treece
davet at frii.com
Sun Jan 11 09:53:04 MST 2009
I run sshd on a non-standard port (of course, then you have to remember
which port your running it on).
Ben wrote:
>>> Another question is: any tricks we can use to slow down requests to
>>> ssh so we don't get locked out?
>>>
>
> I use denyhosts -- it's a script that looks at your log file and after X
> failed attempts to login via ssh it blocks the IP in your firewall for a
> specified period. Also nice if you don't really trust all the passwords
> for ssh to withstand a rigorous dictionary attack (but doesn't stop a
> distributed dictionary attack).
>
>
>
More information about the LUG
mailing list