linux.gentoo.user

On Wed, 2008-02-27 at 21:24 +0100, Remy Blank wrote:

> A simple solution is to run sshd on a
> non-standard, high-numbered port, e.g. in the 30'000. Bots only ever try
> to connect on port 22. This will *not* improve the protection of your
> server, but it will avoid having your logs spammed.

+1

I hosed my router, and had to go back to an old one that could only
forward port 22 to an internal machine port 22. I got lots of brute
force attacks. Well, most of them only tried about 5 passwords each, so
not exactly brute force... Anyway, once I upgraded my router again and
forwarded port x0000 to port 22, I haven't seen one since.

HTH,
--
Iain Buchanan

Linux - because software problems should not cost money.

-- Shlomi Fish

--
gentoo-user@lists.gentoo.org mailing list