[CentOS] Ideas for stopping ssh brute force attacks

Eucke eucke at eucke.com
Mon Jul 21 21:23:45 UTC 2008

Dan Carl wrote:
> Just change the default port.
> You can also limit the allowed nocks on door with iptables, but changing the
> port is much eaieer.
> Cleans up the logs real nice.
> Dan

I'll second that.  Combining that with the SSH iptables entries to limit 
the number of attempts will help as well.  Those two actions will, 
effectively, make the brute force impossible.


More information about the CentOS mailing list