[CentOS] SSH Automatic Log-on Failure - Centos 5.5

Thu Jan 27 15:40:14 UTC 2011
m.roth at 5-cent.us <m.roth at 5-cent.us>

Always Learning wrote:
> On Thu, 2011-01-27 at 10:27 -0500, m.roth at 5-cent.us wrote:
>> Security through obscurity doesn't work.
> It certainly helps defeat most potential intruders but not the most
> determined.  IPtables does help too.

We also run fail2ban at work. Very nice, installs (along with shorewall),
and creates a temporary blacklist, blocking an IP that's tried five, I
think, times to break in. All configurable, btw.
>> Restricted to a few IP addresses is good; the fewer the better.
> Currently 3 static IPs.