Skip to main content

Shutdown ssh brute-force password attacks

More
19 years 1 month ago #11360 by MobyChien
Whenever you opened ssh access, you know you are inviting ssh brute-force attacks. I am not allowing password authentication (only Public/private key authentication) so I am relatively safe by now, but these attacks are annoying. Is there any way (e.g. using Linux firewall rules), to automatically shutdown the attack connections?
8)
More
19 years 1 month ago #11381 by DaLight
If you will be logging in from predetermined locations, you could allow external access based on IP or subnet. Alternatively, if you get this attacks quite frequently, you could also use iptables' rate limiting rules which allow you to specify how often you allow connections of a particular type.
More
19 years 1 month ago #11382 by RedRanger
Alright, if you have a cisco router, then you can set what is called an access control list (ACL). They are very useful and effective.

RedRanger

"I'd Rather You Hate Me For Everything I Am Than Love Me For Something I'm Not."

Be Awesome
More
Time to create page: 0.123 seconds