[CentOS] Defending againts simultanious attacks

Fri Feb 16 07:32:44 UTC 2007
Mohd Syakir <syakir35 at gmail.com>

Thanks everybody.

there quit a lot and very useful information for a newbie like me.
i'll have a look into some of the suggestion, almost all of them a new to me.
i'll try them by myself, and might be get back to you guys if there is
any problem.

thanks.

On 15/02/07, Jens Ahlin <mailing_lists+centos at caleotech.com> wrote:
> Why not change the port that the SSH daemon listens to. Change it to use
> an unused port > 1024 and you will see that the attempt will stop.
>
>       Jens
>
> > Hi,
> >
> > i have one centos 4.3 box, exposed to the internet.
> > since several weeks ago, i found numerous attemps to connect through
> > SSH, but failed.
> >
> > they tried with many username, including root.
> > it's comes from different IP. some of them are foreign website.
> >
> > How do i make my centos become smarter in handling this kind of attacks.
> >
> > eventhough i've disable all the user accounts, left only the admin
> > accounts. making the password so hard, longer and combining alphabet,
> > numbers and characters... yet i dont want the attackers keep on
> > trying.
> >
> > any suggestions?
> >
> > thanks in advance.
> > _______________________________________________
> > CentOS mailing list
> > CentOS at centos.org
> > http://lists.centos.org/mailman/listinfo/centos
> >
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>