[mdlug] Restricted Remote Access Script
David Relson
relson at osagesoftware.com
Sat Jan 13 08:06:05 EST 2007
On Sat, 13 Jan 2007 01:17:33 -0800
Michael S. Mikowski wrote:
> Hi Everyone:
>
> A while ago, someone (you know who you are, hopefully ;)
> had posted a way to use a reverse-ssh to access remote
> machines.
>
> My remote machine is getting hit with 1500+ dictionary
> login attempts per day, and I think its time to consider
> locking down ssh. Could the original poster please give
> me a pointer or two? I think its time to lock things
> down a little tighter. Your help would be greatly
> appreciated.
>
> Sincerely,
>
> Mike
Joe L has a script that scans the system log for ssh failures. If an
address has too many, that address is added to hosts.deny to block it.
It works like a charm for limiting dictionary attacks.
David
More information about the mdlug
mailing list