Re: illegal user logon

To: Christopher Browne <cbbrowne@gmail.com>
Cc: Dr Gavin Seddon <gavin.m.seddon@manchester.ac.uk>, amd64list <debian-amd64@lists.debian.org>
Subject: Re: illegal user logon
From: Dr Gavin Seddon <gavin.m.seddon@man.ac.uk>
Date: Sun, 21 Aug 2005 13:42:49 +0100
Message-id: <[🔎] 1124628169.2686.4.camel@localhost.localdomain>
In-reply-to: <[🔎] d6d6637f05082013232b33ce12@mail.gmail.com>
References: <[🔎] 1124565007.4392.3.camel@localhost.localdomain> <[🔎] d6d6637f05082013232b33ce12@mail.gmail.com>

I assumed iptables,
thanks for the reply.
Gavin.

On Sat, 2005-08-20 at 16:23 -0400, Christopher Browne wrote:
> On 8/20/05, Dr Gavin Seddon <gavin.m.seddon@man.ac.uk> wrote:
> > I have noticed in my log there has been people trying to logon to my
> > debian box.  Is there any software available to stop this, or should I
> > use pam to restrict access?
> 
> This isn't likely to have any answers where AMD64 is particularly relevant.
> 
> In principle, you might try using ipchains/iptables to cease access to
> ports that access services that outsiders oughtn't access.
> 
> If they are trying plain old ssh, and there's a lot of password
> guessing going on, you might consider configuring it to accept only
> ssh keys for authentication.  That would doubtless add a certain
> inconvenience factor, but keep password guessing from being AT ALL
> effective as an attack...

Reply to:

References:
- illegal user logon
  - From: Dr Gavin Seddon <gavin.m.seddon@man.ac.uk>
- Re: illegal user logon
  - From: Christopher Browne <cbbrowne@gmail.com>

Prev by Date: Re: Last dist-upgrade of sid breaks a little kde
Next by Date: Re: Acer Turion laptops
Previous by thread: Re: illegal user logon
Next by thread: Re: illegal user logon
Index(es):
- Date
- Thread