- Deploy the SSH server on a port other than 22/TCP
- Deploy one of the SSH brute force prevention tools
- Disallow remote root logins
- Set PasswordAuthentication to "no" and use keys
- If you must use passwords, ensure that they are all complex
- Use AllowGroups to limit access to a specific group of users
- Use as a chroot jail for SSH if possible
- Limit the IP ranges that can connect to SSH
Friday, June 18, 2010
Distributed SSH Brute Force Attempts on the rise again
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment