| 1 |
There's a much better way to protect yourself. Install a firewall and |
| 2 |
deny access to that ip address. More than that, if you are on a static |
| 3 |
IP when you connect (or more, but known addresses) simply deny from all |
| 4 |
ip and allow ssh port only to those that you can trust (yours). Even |
| 5 |
more, change the ssh server port to something very different. |
| 6 |
If you are not familiar with firewalls you could install webmin (emerge |
| 7 |
webmin) and do it from there, eventually via shorewall (emerge |
| 8 |
shorewall). Don't forget to secure the webmin server as well (same as |
| 9 |
for sshd) after your firewall is up and running. |
| 10 |
Also, be very carefull when installing the firewall for the first time |
| 11 |
if you don't have phisical access to the server. You don't want to lock |
| 12 |
yourself out by mistake. Eventually you could not add your firewall to |
| 13 |
your startup list until you are sure it's all ok and if you accidentally |
| 14 |
mess up you can call your provider and ask for a reboot ;) |
| 15 |
I am surfing here, and I got far from the subject. Let us know if it |
| 16 |
helps. |
| 17 |
Radu |
| 18 |
|
| 19 |
-----Original Message----- |
| 20 |
From: Claudinei Matos [mailto:claudineimatos@×××××.com] |
| 21 |
Sent: 6 mai 2005 19:47 |
| 22 |
To: gentoo-server@l.g.o |
| 23 |
Subject: [gentoo-server] sshd (many connection attempts with invalid |
| 24 |
user) |
| 25 |
|
| 26 |
|
| 27 |
Hi, |
| 28 |
|
| 29 |
I have a lot of connection attempts in my ssh server. I've take a look |
| 30 |
at sshd_config man pages but I didn't found a way to deny the source |
| 31 |
ip of the attempts by 5 minutes (i.e.) if this ip can't login after 5 |
| 32 |
attempts (i.e.). Is there a way to do this? |
| 33 |
|
| 34 |
Tks, |
| 35 |
|
| 36 |
Claudinei Matos |
| 37 |
|
| 38 |
-- |
| 39 |
gentoo-server@g.o mailing list |
| 40 |
|
| 41 |
|
| 42 |
-- |
| 43 |
gentoo-server@g.o mailing list |
Archives