[Mageia-dev] Fail2Ban vs Blockhosts vs DenyHosts vs iptable throttle for SSH
finid at linuxbsdos.com
finid at linuxbsdos.com
Tue Feb 19 11:06:51 CET 2013
Sounds like a good idea to have something in place out of the box.
PC-BSD, which has SSH server running by default also has DenyHosts
configured and running by default.
--
finid
On 2013-02-19 09:55, Robert Fox wrote:
> Hello all!
>
> After reading this article:
>
> http://it.slashdot.org/story/13/02/16/2129244/ssh-password-gropers-are-now-trying-high-ports?utm_source=rss1.0mainlinkanon&utm_medium=feed
>
> I have been using Blockhosts (http://www.aczoom.com/blockhosts) for
> many
> years now without issue (I also use a certificate with passwords
> turned
> off) but I leave the port as standard 22
>
> I never tried the others, so not sure which is most effective . . .
>
> My question is two fold:
>
> 1) I was curious of what others use on Mageia - and your experiences
>
> 2) Should we not have something standard in the SSH config during
> install as a dependency? Make it automatic so at least the standard
> config of ssh is a bit more protected from bot scans??
>
> I'm interested to see what everyone says on this list . . .
>
> Have a nice day-
>
> Cheers, R.Fox
More information about the Mageia-dev
mailing list