Re: help? fighting ssh user/password guessing attempts

To: netbsd-users%netbsd.org@localhost
Subject: Re: help? fighting ssh user/password guessing attempts
From: christos%astron.com@localhost (Christos Zoulas)
Date: Wed, 15 Oct 2008 20:33:39 +0000 (UTC)

In article <5D831111-8A91-442A-BD9F-AB04F89C0B1A%webkeks.org@localhost>,
Jonathan Schleifer  <js-netbsd-users%webkeks.org@localhost> wrote:
>-=-=-=-=-=-
>
>Am 15.10.2008 um 21:21 schrieb Volkmar Seifert:
>
>> First of all...yes, everyone running an sshd has this problem, and no,
>> switching to an arbitrary port is no help at all. Obscurity is no
>> security, it does only delay the inevitable. I've seen such attacks  
>> on the
>> weirdest ports.
>
>Nonsense, it's not security by obscurity, as there isn't even a  
>security risk. It's just annoying to get the logs spammed, that's all.  
>And another port solves that, as all botnets only try to connect on  
>port 22.

It is definitely help as the attacker needs to port-scan to find
the open ssh port so it costs the attacker a lot more per host both
in time and bandwidth.

christos

References:
- help? fighting ssh user/password guessing attempts
  - From: Thomas Feddersen
- Re: help? fighting ssh user/password guessing attempts
  - From: Volkmar Seifert
- Re: help? fighting ssh user/password guessing attempts
  - From: Jonathan Schleifer

Prev by Date: Re: help? fighting ssh user/password guessing attempts
Next by Date: atu in hostap mode, netbsd 4.0 i386
Previous by Thread: Re: help? fighting ssh user/password guessing attempts
Next by Thread: Re: help? fighting ssh user/password guessing attempts
Indexes:

Home | Main Index | Thread Index | Old Index