Responding to a Brute Force SSH Attack

Responding to a Brute Force SSH Attack
Jamie Riden

It was a bad start to a Monday morning: I arrived at work to find the intrusion detection system so bogged down in alerts that it was barely responsive.

Responding to a Brute Force SSH Attack 2008-12-08
Mat

You might want to have a look at deny hosts. (http://denyhosts.sourceforge.net/) Designed to add bad brute force IP's to a block list. You can configure just how strict you want it to be 3 bad guesses no more login prompt for you! Very useful for public open ssh services.

Regards,

Mat. ...

[ more ]