[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: help? fighting ssh user/password guessing attempts
> I have adapted the following technique:
> 1. enable uniquely SSH key authentication or alternatively force all
> users to have sane passwords.
> 2. Impose connection rate limits.
> 3. If an attacker is so annoying that he eats a lot of bandwidth (some
> do), block him. Otherwise, laugh at him.
> I really don't see the need to do much more than that.
Would you mind offering a quick synopsis of how you have implemented
steps 2 and 3 above?
Main Index |
Thread Index |