Thanks everybody. there quit a lot and very useful information for a newbie like me. i'll have a look into some of the suggestion, almost all of them a new to me. i'll try them by myself, and might be get back to you guys if there is any problem. thanks. On 15/02/07, Jens Ahlin <mailing_lists+centos at caleotech.com> wrote: > Why not change the port that the SSH daemon listens to. Change it to use > an unused port > 1024 and you will see that the attempt will stop. > > Jens > > > Hi, > > > > i have one centos 4.3 box, exposed to the internet. > > since several weeks ago, i found numerous attemps to connect through > > SSH, but failed. > > > > they tried with many username, including root. > > it's comes from different IP. some of them are foreign website. > > > > How do i make my centos become smarter in handling this kind of attacks. > > > > eventhough i've disable all the user accounts, left only the admin > > accounts. making the password so hard, longer and combining alphabet, > > numbers and characters... yet i dont want the attackers keep on > > trying. > > > > any suggestions? > > > > thanks in advance. > > _______________________________________________ > > CentOS mailing list > > CentOS at centos.org > > http://lists.centos.org/mailman/listinfo/centos > > > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >