On 4/20/07, Johannes Wiedersich <johannes@physik.blm.tu-muenchen.de> wrote:
Nick Demou wrote: > Any other idea of simple measures that will keep as many attackers > away from the one and only service that is listening to the Internet? Different approach, but the same goal: [...] fail2ban bans IPs that cause multiple authentication errors [...] Maybe not as perfect as your approach, but very simple: just install and forget.
thanks Johannes, true It doesn't protect you from an sshd vulnerability but it does a lot with zero effort.