SLUG Mailing List Archives - Re: [SLUG] SSH attack

To: Slug <slug@xxxxxxxxxxx>
Subject: Re: [SLUG] SSH attack
From: "Amos Shapira" <amos.shapira@xxxxxxxxx>
Date: Fri, 3 Aug 2007 16:04:57 +1000
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=kpP57c2dkGSPAF8RIkRqYFarUMTRiGIJaFmD/GxFhb+cnleuki7mfgiaZ9Zx/babINJgPBfvTDUadFd1PnAAF/lufuq8DaO/tUeEdw2tSRWKZx7tiqWzhV3TpRKjR6T75mnFTK5GwhmQ2rfmIJCCeofM12Gs250UJU640Dk2nY4=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=idxoLIxX2+ineY2UX2tJj76hIaPP6rClCehJk1/K2hBOo5wKrTFvi1tzirHQ1Xj4DGLIrLSfsDtzTf1Kx+X9J0nNqXmCr+bl677O6vMnh8rmLTWe+6zt0BCU5kea3liWt85Ef/XRDt4udZcRaoil89nQewdd909XQbVGJluNkVw=

On 03/08/07, Morgan Storey <morganstorey@xxxxxxxxx> wrote:
>
> I prefer to use something like denyhosts to simply block the offending
> ip's
> as moving the port seems somewhat to be security through obscurity.

Yes it is. But it keeps your logs much cleaner (so any attempt to hack is
noticed much more easily, not that I've seen any since I moved the port) and
doesn't prevent you from using denyhosts still.

--Amos

References:
- Re: [SLUG] SSH attack
  - From: Alex Samad
- Re: [SLUG] SSH attack
  - From: Morgan Storey

Messages sorted by: [ date | thread ]
Prev by Date: [SLUG] HP / Redhat Linux LEAGUE event on August 17 at North Ryde
Next by Date: Re: [SLUG] Home Linux Server
Previous by thread: Re: [SLUG] SSH attack
Next by thread: Re: [SLUG] SSH attack