[nycbug-talk] SSH attacks
N.J. Thomas
thomas at zaph.org
Wed Sep 10 15:11:05 EDT 2008
* Andy Kosela <akosela at andykosela.com> [2008-09-10 19:38:47+0000]:
> > Hey, is anyone else seeing an upsurge in distributed SSH attacks over
> > the past week or two?
>
> The best defense against such attacks is just to allow SSH connections
> only for specific hosts/subnets.
Another good suggestion is to use the "AllowUsers" option in
/etc/ssh/sshd_config to permit only specified users to log in. Useful if
you run a server where only a small number of users are allowed to log
in.
Thomas
More information about the talk
mailing list