After a long battle with technology, Erich Newell wrote:
[ botnets, ssh brute force attacks, etcetera ]
> I recommend Single Packet Authentication or Port Knocking for use in
> conjunction with your SSH service.
Port knocking is really useful, but you need to have something on the remote
client that can send the knock sequences--knock or netcat or even telnet.
This may or may not be easy, depending on what the remote client is. So I
have my sshd listening on 22 and a non-standard port. 22's blocked off with
iptables/knockd. The non-standard port is not. I haven't seen any
brute-force ssh attacks in the last 3 weeks according to the logs.
--
Really, I'm not out to destroy Microsoft. That will just be a
completely unintentional side effect. --Linus Torvalds
My blog and resume:
http://crow202.dyndns.org:8080/wordpress/
Matt G|There is no Darkness in Eternity/But only Light too dim for us to see
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
(text/plain)