Admins warned of brute-force SSH attacks

Admins warned of brute-force SSH attacks
Robert Lemos, SecurityFocus 2008-05-14

Allowing secure shell access to a server tends to attract the occasional attempt to guess a valid username and password for the service. However, a spike in attacks this week has system administrators worried.

Expand all | Post comment

Admins warned of brute-force SSH attacks 2008-05-15
Justin

Admins warned of brute-force SSH attacks 2008-05-15
DooMRunneR (1 replies)

Re: Admins warned of brute-force SSH attacks 2008-05-16
Anonymous

Admins warned of brute-force SSH attacks 2008-05-15
Anonymous (1 replies)

Re: Admins warned of brute-force SSH attacks 2008-05-19
Anonymous

Admins warned of brute-force SSH attacks 2008-05-15
Anonymous

Admins warned of brute-force SSH attacks 2008-05-16
Jeff Sadowski

Admins warned of brute-force SSH attacks 2008-05-17
Anonymous

Admins warned of brute-force SSH attacks 2008-05-27
Anonymous

Only a few of my users have SSH access to my servers and none of them have "common" usernames.

No remote root logins.. gotta su for access, only a few have access to the "su" command, which has itself been renamed.

SSH access is restricted to specific IP addresses by both the host level firewall and hosts.allow

I enforce strong passwords and frequent changes.

I'm fairly comfortable with SSH access to my servers for now.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11518/35134#35134