[CentOS] SSH Automatic Log-on Failure - Centos 5.5
m.roth at 5-cent.us
m.roth at 5-cent.us
Thu Jan 27 15:40:14 UTC 2011
Always Learning wrote:
>
> On Thu, 2011-01-27 at 10:27 -0500, m.roth at 5-cent.us wrote:
>
>> Security through obscurity doesn't work.
>
> It certainly helps defeat most potential intruders but not the most
> determined. IPtables does help too.
We also run fail2ban at work. Very nice, installs (along with shorewall),
and creates a temporary blacklist, blocking an IP that's tried five, I
think, times to break in. All configurable, btw.
<snip>
>> Restricted to a few IP addresses is good; the fewer the better.
>
> Currently 3 static IPs.
<G>
mark
More information about the CentOS
mailing list