[SGVLUG] ssh protection - advice desired - thanks

James McDuffie mcduffie at pitfall.org
Wed Oct 19 21:09:11 PDT 2011


One more suggestion:
http://www.fail2ban.org/wiki/index.php/Main_Page

Fail2ban will ban the ip from SSH access for a specified amount of time. 
This way dictionary attacks are unlikely to succeed. I also use 
portsentry to ban any ip that port scans me.

On 10/19/2011 09:29 AM, Robert Leyva wrote:
> Thanks for all the good advice.
>
> robert at pip:~$ sudo aptitude install denyhosts
> ...
> done!
>
> ...I'll see how denyhosts does for now, and keep tail-ing my auth.log
>
>
> http://packages.debian.org/squeeze/denyhosts
> http://denyhosts.sourceforge.net/index.html
>
	


More information about the SGVLUG mailing list