pmsumner: (Default)

SSHD Brute Force Attacks

posted by [personal profile] pmsumner at 09:01pm on 06/06/2005 under
I've eventually gotten rid of all those goshdarned script kiddie attacks on port 22 (SSH daemon), by stopping it from running completely. It now runs solely on port 443 (secure http). Shouldn't be an issue. Almost every firewall I've seen about lets connections out on port 443 else secure web pages would break!

Anyhow, the consequence of this is that I no longer have my logs being filled up with crap from attacks. Hurrah. Someday I'm going to get Snort/some kind of IDS installed to sort this stuff out the proper way.
There are no comments on this entry.

Reply

This account has disabled anonymous posting.
If you don't have an account you can create one now.
HTML doesn't work in the subject.
More info about formatting
 
Notice: This account is set to log the IP addresses of everyone who comments.
Links will be displayed as unclickable URLs to help prevent spam.

May

SunMonTueWedThuFriSat
      1
 
 2
 
 3
 
 4
1
5
 
 6
 
 7
 
 8
 
 9
 
 10
 
 11
 
12
 
 13
 
 14
 
 15
 
 16
 
 17
 
 18
 
19
 
 20
 
 21
 
 22
 
 23
 
 24
 
 25
 
26
 
 27
 
 28
 
 29
 
 30
 
 31