On Wed, 17 Mar 2010 22:55:48 +0100
MichaĆ Piotrowski <mkkp4x4(a)gmail.com> wrote:
Hi,
I recetly had 30 hours of ssh brute force attack on my system. I'm
using strong passwords, but still can be geneated from /dev/random, so
I switched to rsa authentication. What's your favourite way to deal
with such attacks? Please describe pros and cons.
Regards,
Michal
'denyhosts' is in Fedora as well and works great. Use AllowUser lines
in your global ssh configuration and only allow known good users /
source addresses (if that's possible in your setup).
Regards,
--
Conrad Meyer <cemeyer(a)u.washington.edu>