[CentOS] Ideas for stopping ssh brute force attacks

Mon Jul 21 21:23:45 UTC 2008
Eucke <eucke at eucke.com>

Dan Carl wrote:
> Just change the default port.
> You can also limit the allowed nocks on door with iptables, but changing the
> port is much eaieer.
> Cleans up the logs real nice.
> Dan
>   

I'll second that.  Combining that with the SSH iptables entries to limit 
the number of attempts will help as well.  Those two actions will, 
effectively, make the brute force impossible.


-- 
Eucke