[lug] DOS ssh attacks

Dave Treece davet at frii.com
Sun Jan 11 09:53:04 MST 2009

I run sshd on a non-standard port (of course, then you have to remember 
which port your running it on).

Ben wrote:
>>> Another question is: any tricks we can use to slow down requests to
>>> ssh so we don't get locked out?
> I use denyhosts -- it's a script that looks at your log file and after X
> failed attempts to login via ssh it blocks the IP in your firewall for a
> specified period. Also nice if you don't really trust all the passwords
> for ssh to withstand a rigorous dictionary attack (but doesn't stop a
> distributed dictionary attack).

More information about the LUG mailing list