Re: web alternative to knockd for a "secure" sshd server?

To: debian-user@lists.debian.org
Cc: debian-user@lists.debian.org
Subject: Re: web alternative to knockd for a "secure" sshd server?
From: "Nick Demou" <ndemou@gmail.com>
Date: Fri, 20 Apr 2007 13:51:15 +0300
Message-id: <[🔎] cc703c350704200351v3b6ae3e6s53029397b616af5e@mail.gmail.com>
In-reply-to: <[🔎] 462892C0.70807@physik.blm.tu-muenchen.de>
References: <[🔎] cc703c350704200247id1218efi8bcb07eafefd34fa@mail.gmail.com> <[🔎] 462892C0.70807@physik.blm.tu-muenchen.de>

On 4/20/07, Johannes Wiedersich <johannes@physik.blm.tu-muenchen.de> wrote:

Nick Demou wrote:
> Any other idea of simple measures that will keep as many attackers
> away from the one and only service that is listening to the Internet?

Different approach, but the same goal:

[...] fail2ban bans IPs that cause multiple authentication errors [...]

Maybe not as perfect as your approach, but very simple: just install and
forget.


thanks Johannes, true It doesn't protect you from an sshd
vulnerability but it does a lot with zero effort.

Reply to:

References:
- web alternative to knockd for a "secure" sshd server?
  - From: "Nick Demou" <ndemou@gmail.com>
- Re: web alternative to knockd for a "secure" sshd server?
  - From: Johannes Wiedersich <johannes@physik.blm.tu-muenchen.de>

Prev by Date: Re: web alternative to knockd for a "secure" sshd server?
Next by Date: User level alternatives?
Previous by thread: Re: web alternative to knockd for a "secure" sshd server?
Next by thread: Re: web alternative to knockd for a "secure" sshd server?
Index(es):
- Date
- Thread