BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

break-in attempts on my server

Subject: break-in attempts on my server
From: blu at scrunch.net (Bob BLU)
Date: Sun, 20 Nov 2005 21:09:47 -0500
In-reply-to: <4380F587.9010702@thekramers.net>
References: <4380F587.9010702@thekramers.net>

At 05:15 PM 11/20/2005, David Kramer wrote:

>Is there *anything* else I can do?  There's hundreds of these attempts.

Change SSH to a different port (security through obscurity).

Change hosts.allow to only allow SSH from the internal net, and external locations that you work from. Include an external ISP host, so that if you are at a new external location you can ssh through the ISP to get in.

These two work well for me.

You can also consider disabling password access and only allow access with a key.  If you decide to keep a key at an ISP make sure it has a passphrase.

HTH.

Follow-Ups:
- break-in attempts on my server
  - From: kentborg at borg.org (Kent Borg)

References:
- break-in attempts on my server
  - From: david at thekramers.net (David Kramer)

Prev by Date: break-in attempts on my server
Next by Date: break-in attempts on my server
Previous by thread: break-in attempts on my server
Next by thread: break-in attempts on my server
Index(es):
- Date
- Thread


BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Boston Linux & Unix / webmaster@blu.org