[plug] ssh scans
Patrick Coleman
blinken at gmail.com
Mon Sep 11 09:28:49 WST 2006
On 9/11/06, W.Kenworthy <billk at iinet.net.au> wrote:
> I have a machine where ssh has been changed from being protected by
> firewall rules, to be open to the world. So of course, now I am getting
> ssh scans.
>
> There are also a small number of users whose passwords I do not
> necessarily trust (time for jack the ripper!), so whats the thinking on
> the best way to secure against such scans? Is there something in ssh,
> or amultiple connection firewall restriction?
>
> BillK
We use ipb-monitor
(http://jason.mindsocket.com.au/pages/linux/ipb-monitor/) which was
actually written by somebody on this list (Jason Nicholls). Works very
well.
--Patrick
More information about the plug
mailing list