Gentoo Archives: gentoo-security

From: Michael Schachtebeck <michael.schachtebeck@×××××××××××××××××××.de>
To: gentoo-security@l.g.o
Subject: Re: [gentoo-security] blocking SSH probes
Date: Mon, 09 Aug 2004 07:06:18
Message-Id: 41172227.4080106@stud.uni-goettingen.de
In Reply to: [gentoo-security] blocking SSH probes by Andrew Gaffney
1 Andrew Gaffney schrieb am 08/09/2004 03:03 AM:
2
3 > I'm getting really annoyed with these SSH probes. While I don't have any weak
4 > accounts, I still want to cover myself. I want to add an iptables DROP rule for
5 > 1 minute for any IP that has a failed login through SSH.
6
7 Why don't you change the port your sshd is listening to? I did it, too,
8 and since I changed it, everything is nice in my logs. ;) These
9 automated tools always seem to try port 22...
10
11 Michael.
12
13 --
14 gentoo-security@g.o mailing list