Re: help? fighting ssh user/password guessing attempts

To: "Jonathan Schleifer" <js-netbsd-users%webkeks.org@localhost>
Subject: Re: help? fighting ssh user/password guessing attempts
From: "Andy Ruhl" <acruhl%gmail.com@localhost>
Date: Wed, 15 Oct 2008 13:30:45 -0700

On Wed, Oct 15, 2008 at 1:24 PM, Jonathan Schleifer
<js-netbsd-users%webkeks.org@localhost> wrote:
> Am 15.10.2008 um 21:21 schrieb Volkmar Seifert:
>
>> First of all...yes, everyone running an sshd has this problem, and no,
>> switching to an arbitrary port is no help at all. Obscurity is no
>> security, it does only delay the inevitable. I've seen such attacks on the
>> weirdest ports.
>
> Nonsense, it's not security by obscurity, as there isn't even a security
> risk. It's just annoying to get the logs spammed, that's all. And another
> port solves that, as all botnets only try to connect on port 22.

+1.

Probably the original post and the response you quoted aren't thinking
of this problem in the proper context. It's just an annoyance. Move
the port, then you can worry about legit hack attempts, if you ever
get one.

Andy

References:
- help? fighting ssh user/password guessing attempts
  - From: Thomas Feddersen
- Re: help? fighting ssh user/password guessing attempts
  - From: Volkmar Seifert
- Re: help? fighting ssh user/password guessing attempts
  - From: Jonathan Schleifer

Prev by Date: Re: help? fighting ssh user/password guessing attempts
Next by Date: Re: help? fighting ssh user/password guessing attempts
Previous by Thread: Re: help? fighting ssh user/password guessing attempts
Next by Thread: Re: help? fighting ssh user/password guessing attempts
Indexes:

Home | Main Index | Thread Index | Old Index