[CentOS] Securing SSH

Rudi Ahlers Rudi at SoftDux.com
Tue Mar 25 16:55:10 UTC 2008


Tim Alberts wrote:
> So I setup ssh on a server so I could do some work from home and I 
> think the second I opened it every sorry monkey from around the world 
> has been trying every account name imaginable to get into the system.
>
> What's a good way to deal with this?
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
1. Change the default port
2. use only SSH protocol 2
3. Install some brute force protection which can automatically ban an IP 
on say 5 / 10 failed login attempts
4. ONLY allow SSH access from your IP, if it's static. Or signup for a 
DynDNS account, and then only allow SSH access from your DynDNS domain

-- 

Kind Regards
Rudi Ahlers
CEO, SoftDux

Web:   http://www.SoftDux.com
Check out my technical blog, http://blog.softdux.com for Linux or other technical stuff, or visit http://www.WebHostingTalk.co.za for Web Hosting stugg




More information about the CentOS mailing list