[ILUG] SSH dictionary attacks.
Josh Glover
jmglov at gmail.com
Wed Aug 23 13:47:03 IST 2006
On 23/08/06, Colm Buckley <colm at tuatha.org> wrote:
> On 23 Aug 2006, at 11:54, Aine Douglas wrote:
>
> > I'm getting sick of seeing log entries for SSH dictionary attacks
>
> One thing I've found extremely useful is the implementation of port
> knocking
Port knocking can be a great additional layer of security, but it can
be a bit complicated to implement.
An easier technique that will probably get rid of about 99% of the
dictionary attacks you are seeing is to simply run sshd on a
non-standard port. It requires client-side configuration, but then
again, so does port knocking.
-Josh
More information about the ILUG
mailing list