[CentOS] Ideas for stopping ssh brute force attacks
Florin Andrei
florin at andrei.myip.org
Wed Jul 23 20:50:46 UTC 2008
No method is perfect, but something that seems to work ok in practice is
to just move ssh to a different TCP port, and -j DROP the unused ports.
Failproof? No, but it reduces the noise tremendously.
If the script kiddies learn the new port (unlikely), either move it to
another port, or apply one of the other methods already recommended in
this thread.
--
Florin Andrei
http://florin.myip.org/
More information about the CentOS
mailing list