[CentOS] protecting multiuser systems from bruteforce ssh attacks

Fri Aug 21 10:31:21 UTC 2009
Kai Schaetzl <maillists at conactive.com>

Oliver Ransom wrote on Fri, 21 Aug 2009 11:12:35 +0930:

> As an additional question to the above, would forcing users to log in  
> with SSH keys rather than passwords avoid requiring any anti brute  
> force attack measures to be put in place?

Regarding SHH: yes. Nevertheless, you will want to handle these with rate
-limiting, to avoid overflowing the logs and to protect your ressources.

Kai

-- 
Kai Schätzl, Berlin, Germany
Get your web at Conactive Internet Services: http://www.conactive.com