Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections: Blog - Developer - High Performance - Infrastructure - IT Management - Security - Storage -
Linux Today Navigation
LT Home
Preferences
Contribute
Link to Us
Search
Linux Jobs

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Technology Jobs

JustTechJobs.com

LinuxToday Newsletters
Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com
Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

 






Current Newswire:

20 popular Ubuntu Linux apps you may want to try

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues

Using Wii remote with Android Device- Taking Gaming to the Next Level

Commercial Support now available for the open-source NGINX Web server

Linux Top 5: Linux's New Fellow



Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Justtechjobs.com Post A Job | Post A Resume
:Hack and Crack Proof SSH on Linux
Hack and Crack Proof SSH on Linux
Aug 6, 2007, 09 :00 UTC (8 Talkback[s]) (12916 reads)
(Other stories by David M Williams)

"It's inevitable: if your computer is Internet-connected you will have people coming a-knockin'. Fortunately Linux users are more savvy than to think any keep-alive ping or other piece of Internet flotsam is a hack attempt. Even so, it's simply a matter of time before your router's lights flash heavily and /var/log/auth.log (/var/log/secure on Red Hat) fills with chilling messages like these: 

$ tail /var/log/auth.log
Aug  1 20:23:41 zugzug sshd[15577]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.218.125.178
Aug  1 20:23:44 zugzug sshd[15577]: Failed password for invalid user edward from 210.48.230.5 port 43812 ssh2

Complete Story

Related Stories:
Block Brute Force Attacks with iptables(Aug 02, 2007)
Leverage Nagios with Plug-Ins You Write(Jul 20, 2007)
Setting Up SSH2 on Red Hat Enterprise Linux(Jul 19, 2007)
How to Secure an SSL VPN with One-Time Passcodes and Mutual Authentication(Jul 03, 2007)


Index Mode   |   Flat Mode   |   Thread Mode   |   Thread Flat  
  Talkback(s) Name  and Date
> Depending on how flexible your network ...   Bad piece of advice   
wsd
Aug 6, 2007, 09:31:36  
Over in the BSD world, the OpenBSD packe ...   Even easier and generalized with OpenBSD's PF   
Peter N. M. Hansteen
Aug 6, 2007, 10:34:44  
> > Depending on how flexible your netwo ...   Re: Bad piece of advice   
Matthew Lenz
Aug 6, 2007, 13:00:32  
...but I'm the only one who needs to ...   I have to login remotely via ssh...   
cjm
Aug 6, 2007, 13:15:28  
It is increasingly the case that pro ...   Re: Bad piece of advice   
Hyper L
Aug 6, 2007, 14:33:55  
> It is increasingly the case that p ...   Re: Re: Bad piece of advice   
wsd
Aug 6, 2007, 15:18:08  
1. Disable root login (for reasons given ...   Simpler SSH security measure.   
Rainer Weikusat
Aug 6, 2007, 15:57:02  
I'm referring to Real World Linux Se ...   Too bad the author didn't read Bob Toxen's   
Ian
Aug 6, 2007, 19:07:01  
  Home | Search Talkbacks | Customize View    Top of Page  



Enter your comments below:

* Your Name:

* Your Email Address:

* Subject:

CC: [will also send this talkback to an E-Mail address]

* Comments:

Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content.

Fields marked with * are required!

..............................




All times are recorded in UTC.
Linux is a trademark of Linus Torvalds.
Powered by Linux, Apache and PHP