Re: SSH newbie interested in security concerns
From: cizu jones (cizu2_at_NOSPAM.hotmail.com)
Date: 11/26/04
- Next message: Baho Utot: "Re: Steam Powered"
- Previous message: John Thompson: "Re: SSH newbie interested in security concerns"
- In reply to: John Thompson: "Re: SSH newbie interested in security concerns"
- Next in thread: Mike Stewart: "Re: SSH newbie interested in security concerns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 26 Nov 2004 02:11:47 +0100
>> and so on. This certainly seems to indicate a repetitive attempt to
>> intrude into my system using sshd. How concerned should I be, and what
>> can I do to help ensure failures on their part? I have tried numerous
>> websearches but cannot seem to nail down any real info directly relating
>> to these data.
>
> This is a fairly common scripted attack against ssh. As long as you've
> restricted root access in sshd_config with "PermitRootLogin no" and use
> the "AllowUsers" directive to specify usernames permitted to use the ssh
> service you should be pretty safe.
If you don't like your logs getting filled up you could always run sshd on
another port (just edit your config file). You have been attacked by a scriptkiddie with a program
called brutessh2 (or similar -there are others)
- Next message: Baho Utot: "Re: Steam Powered"
- Previous message: John Thompson: "Re: SSH newbie interested in security concerns"
- In reply to: John Thompson: "Re: SSH newbie interested in security concerns"
- Next in thread: Mike Stewart: "Re: SSH newbie interested in security concerns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
