[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SSH attacks

Subject: Re: SSH attacks
From: "Nicolas Ross" <email@hidden>
Date: Tue, 29 Nov 2005 12:16:30 -0500
Delivered-to: email@hidden
Delivered-to: email@hidden

The thing we've done here is deny all "interactive" login in sshd.
(PasswordAuthentication no in sshd_config). All users who need to login
carry a usb key with a password-protected private-key to login into the
servers...

While for most of the time we login from our office (fixed ip), then a
second ssh deamon listens on a non-standard port taht is only allowed trough
firewall from our office.

Nicolas

Hi,
I am running a Mac OS X Tiger Server and I am increasingly observing attacks trying to log in via SSH and guessing user ids and passwords. The server is only accessible via SSH from the Internet and only two user ids whose passwords are well chosen can log in via SSH. Nevertheless, I would like to limit those attacks since they also consume quite some resources, esp. bandwidth. What are you practicing or suggesting? I am using the firewall which is included with Mac OS X.


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden

Follow-Ups:
- Re: SSH attacks
  - From: "email@hidden" <email@hidden>

References:
	>SSH attacks (From: Bruno Schaeffer <email@hidden>)

Prev by Date: Re: SSH attacks
Next by Date: Strange behavior Directories and files
Previous by thread: Re: SSH attacks
Next by thread: Re: SSH attacks
Index(es):
- Date
- Thread

Home