[nycbug-talk] Distributed ssh dictionary attacks
Andy Kosela
akosela at andykosela.com
Wed Nov 26 14:27:59 EST 2008
On Wed, Nov 26, 2008 at 8:09 PM, Miles Nordin <carton at ivy.net> wrote:
>>>>>> "ak" == Andy Kosela <akosela at andykosela.com> writes:
>
> ak> I don't think it's very reasonable to open sshd(8) to the
> ak> whole world
>
> what do you use to get into your machines then <snip>
I just allow only specific ip's/networks. If this is not a server with
hundreds of users coming from all over the world that setup works very
nicely.. Zero noise in the logs.
--
Andy Kosela
ora et labora
More information about the talk
mailing list