[nycbug-talk] SSH attacks

N.J. Thomas thomas at zaph.org
Wed Sep 10 15:11:05 EDT 2008


* Andy Kosela <akosela at andykosela.com> [2008-09-10 19:38:47+0000]:
> > Hey, is anyone else seeing an upsurge in distributed SSH attacks over
> > the past week or two?
> 
> The best defense against such attacks is just to allow SSH connections
> only for specific hosts/subnets.

Another good suggestion is to use the "AllowUsers" option in
/etc/ssh/sshd_config to permit only specified users to log in. Useful if
you run a server where only a small number of users are allowed to log
in.

Thomas



More information about the talk mailing list