Comments on: Prevent SSH Brute Force attacks http://tom.knaupp.com/2009/02/28/prevent-ssh-brute-force-attacks/ free software, security and a bunch of my strange thoughts Sat, 07 May 2011 01:52:08 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: mm http://tom.knaupp.com/2009/02/28/prevent-ssh-brute-force-attacks/comment-page-1/#comment-144 mm Tue, 26 May 2009 08:55:26 +0000 http://tom.knaupp.com/?p=208#comment-144 i do this with denyhosts (http://denyhosts.sourceforge.net/) since, in case of emergency, and if you need like more than 3 terminal_sessions to a server (this happens sometimes, but it happens) and you dont think about your limit then ... shitty ;-) denyhosts checks auth.log, detects the ips with false ssh_pw/user-ceonnections and blocks these ips (very simple, via /etc/hosts.deny) for ssh for XXX days/weeks/months and so on. i run it on differenmt machines for years now, no problems mm i do this with denyhosts (http://denyhosts.sourceforge.net/) since, in case of emergency, and if you need like more than 3 terminal_sessions to a server (this happens sometimes, but it happens) and you dont think about your limit then … shitty ;-)

denyhosts checks auth.log, detects the ips with false ssh_pw/user-ceonnections and blocks these ips (very simple, via /etc/hosts.deny) for ssh for XXX days/weeks/months and so on.

i run it on differenmt machines for years now, no problems

mm

]]>