Re: [CentOS] SSH attacks from china

24 Jul 2009


      John wrote:
...
Using a non default port is not the solution, because history has learned 
that security by obscurity never worked.....
It's not "security by obscurity", moving the default port is just to not
see all that garbage in the log files - as the automated scripts don't
check for ssh on different ports than 22.
And save cpu cycles by not having to answer to those requests.
...
1: Use Iptables or other firewall in front of server,  to only allow a 
selected group of "trusted" Ip's to access the server trough SSH.
Well, that is not always possible or wanted.
...
2: Enforce Public / Private key Authentication, so that only the users with 
a valid key can access the server.
And yes, you shouldn't be using ssh with password authentication, true.
Ralph

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Re: [CentOS] SSH attacks from china