[SDBUG] brute force ssh username search on my box
Peter Leftwich_Hostmaster
Hostmaster at Video2Video.Com
Tue Apr 21 22:05:57 PDT 2009
Is the originating IP of the attacker(s) logged and ..not spoofable?
--
Peter Leftwich, Owner
Video2Video Services
Box 13692, La Jolla, CA, 92039, USA
http://Www.Video2Video.Com <http://www.video2video.com/>
On Tue, Apr 21, 2009 at 9:58 PM, J. Cordaro <oradrocyaj at yahoo.com> wrote:
> Hi,I'm using rootbsd's Omicron package ($40/mo for Xen sharded Xeon E5420 -
> not bad). The problem is I am getting hammered by ssh script kiddies.
> Based on this doc:
> http://www.freebsdwiki.net/index.php/Block_repeated_illegal_or_failed_SSH_loginsI've tweaked the sshdaemon and run a sweeper script to add the 'bad' ips to
> pf's block list. The questions are, 1) should the hosting service block all
> this junk for me? 2) Should I change the ssh port?Thanks,Jay
More information about the SDBUG
mailing list