[CentOS] Defending againts simultanious attacks

Thu Feb 15 14:37:25 UTC 2007
Max H. <btmanmeh at verizon.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Mohd Syakir wrote:
> 
> any suggestions?

I use a combination of the already mentioned DenyHosts, and also I turn
off password authentication. I then generate SSH key pairs, which
ensures that only machines I want connecting that have the key, can
connect.

With that and the DenyHosts utility, when someone offends a) they can't
connect to begin with because of the keys, and b) DenyHosts adds them to
a deny file and won't allow them to connect again from the offending IP.

There are a number of ways to accomplish what you seek.

Max

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with CentOS - http://enigmail.mozdev.org

iD8DBQFF1HAlHoeeepPau2ERAjV4AKDBoegJ6U9g4E/PjAcWgKhP9XgFwgCeOZzQ
7dYsvPJH+9BYsz9vShG8Jc8=
=4eYY
-----END PGP SIGNATURE-----