Re: intrusion via ssh
On Mar 31, 2005 5:55 AM, Frederic Guillet <fguillet@gmail.com> wrote:
>
> I have about 500 attemps with different usernames and the same IP so i
> guess it is a robot which is trying to enter my system.
>
> the pb with such log is that it does not say if the user has succeeded
> to enter the machine or if the attempt has failed.
>
> any config advice or tutorial are welcome.
>
1. Limit access to port 22 with iptables.
2. Enable RSA keys and disable password authentication for sshd.
--
Jiann-Ming Su
"I have to decide between two equally frightening options.
If I wanted to do that, I'd vote." --Duckman
Reply to: