On Feb 15, 2007, at 8:02 AM, Mohd Syakir wrote: > i have one centos 4.3 box, exposed to the internet. > since several weeks ago, i found numerous attemps to connect through > SSH, but failed. > > they tried with many username, including root. > it's comes from different IP. some of them are foreign website. > > How do i make my centos become smarter in handling this kind of > attacks. DenyHosts is very good at cutting down on these attacks: http://denyhosts.sourceforge.net/ There's a denyhosts package in rpmforge. -steve -- If this were play'd upon a stage now, I could condemn it as an improbable fiction. - Fabian, Twelfth Night