John Merritt wrote:
Hi,
Thanks to everyone who responded. I learned a lot today.
I found a cool project called DenyHosts that I just setup last evening for this purpose. I haven't used it very long, but it was very easy to setup, and seems to be working for me. I know it's cut down on the invalid user logging in /var/log/secure in a matter of a day already, and I've even left SSH traffic on port 22, just to make sure that it's being hammered on.
Check it out.
http://denyhosts.sourceforge.net/index.html
Max