Re: brute force password attacks
On Tue, 6 May 2003 16:49, Joyce, Matthew wrote:
> I have seen several methods of stopping brute force password guessing
> attack in the past.
>
> NT has lockout setting, for locking account after x number of failed
> logins. I think Lotus used to extend the time between login ech failed
> attempt.
>
> Is there something similer for Debian ?
>
> I have port 22 open, and although I use strong passwords, I'm concerned
> that I would not know if this type of attack happened over aperiod of
> day/weeks etc.
>
>
> Any ideas ?
>
You could install logcheck. In it's default configuration it reports all
failures including authentication.
Saves a whole lot of skimming logs manually.
HTH
Bob Parker
Reply to: