Firewalling SSH brute force attacks.

Sep 26, 2011, 10:00 (0 Talkback[s])
(Other stories by Max Spevack)

"Anyone who runs their own Linux server knows the annoyance of looking through the log files to see automated SSH brute force attacks trying to find a login to the machine. In the past, I've avoided this problem simply by running sshd on a non-traditional port, which makes all the automated scripts that attack port 22 fail.

I recently had to move sshd back to port 22, and I quickly tired of seeing 5k failed login attempts every day.

A little bit of Googling, and my firewall has been updated in a way that has eliminated almost all of those failed logins.

Complete Story

Related Stories:

• Mounting Remote Directories With SSHFS On Debian Squeeze(Sep 25, 2011)
• 9 Awesome SSH Tricks(Sep 20, 2011)
• Restricting Users To SFTP Plus Setting Up Chrooted SSH/SFTP (Debian Squeeze)(Sep 08, 2011)
• OpenSSH 5.9 Released(Sep 07, 2011)
• SSH: Tips And Tricks You Need to Know(Sep 06, 2011)
• Use SSH for more secure browsing in public networks(Aug 02, 2011)
• Quick and Dirty VPN With sshuttle(May 04, 2011)
• SSH tunneling for secure web surfing(Apr 03, 2011)