Re: On defense of the sshd crackers
On Tue, 9 Oct 2007 14:18:28 +0000 (UTC)
T o n g <mlist4suntong@yahoo.com> wrote:
[snip]
> 2. I think the (default Debian) sshd configuration should be changed. Even
> when someone attempts cracking by typing in user names and passwords
> manually in front of tty will be penalized. But I've notice my sshd joyfully
> allows thousands of cracking attempts within minutes. This is rather silly,
> or incompetent.
>
> Please comment.
I don't have any experience with this, but check out:
man pam_faildelay
less /etc/login.defs
apt-cache show fail2ban
> Tong (remove underscore(s) to reply)
Celejar
--
mailmin.sourceforge.net - remote access via secure (OpenPGP) email
ssuds.sourceforge.net - A Simple Sudoku Solver and Generator
Reply to: