16 Oct
2009
16 Oct
'09
1:29 p.m.
Duggie wrote:
Hi Ian,
Are you running fail2ban? You could set up a rather strict rule for
ssh failed attempts - say, 2 failures and you block the IP address.
denyhosts is equally useful for blocking persistent bad ssh login
attempts and can sync with a central server to aggregate attempts
worldwide - denyhosts.net also packaged for ubuntu/debian/et al.
-n