Brute force attack, exponential delay for reconnect?
From: S P Arif Sahari Wibowo (arifsaha_at_yahoo.com)
Date: 05/30/05
- Next message: Vincent: "Re: Permission denied (publickey,keyboard-interactive)."
- Previous message: Richard E. Silverman: "Re: cygwin + SSH2"
- Next in thread: Unruh: "Re: Brute force attack, exponential delay for reconnect?"
- Reply: Unruh: "Re: Brute force attack, exponential delay for reconnect?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 30 May 2005 15:15:24 -0400
Hi!
The machines I look after have been getting very bad brute force attack
on the openssh login. Sometime the machines just become locked up,
although I am not sure it is related. Some of the user names are easily
guessable and attacked, but I don't have the option to close
password-based login.
Any advice for this situation?
I think one good way to reduce the attack is having controllable delay
between reconnection from same IP. Ideally the delay should
exponentially increase for every failed login attempt. Is there any
configurations or patches that will allow such thing?
Thank you!
--
Stephan Paul Arif Sahari Wibowo
_____ _____ _____ _____
/____ /____/ /____/ /____
_____/ / / / _____/ http://www.arifsaha.com/
- Next message: Vincent: "Re: Permission denied (publickey,keyboard-interactive)."
- Previous message: Richard E. Silverman: "Re: cygwin + SSH2"
- Next in thread: Unruh: "Re: Brute force attack, exponential delay for reconnect?"
- Reply: Unruh: "Re: Brute force attack, exponential delay for reconnect?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
