[Mageia-dev] Fail2Ban vs Blockhosts vs DenyHosts vs iptable throttle for SSH

AL13N alien at rmail.be
Tue Feb 19 14:29:17 CET 2013


> Hello all!
>
> After reading this article:
> http://it.slashdot.org/story/13/02/16/2129244/ssh-password-gropers-are-now-trying-high-ports?utm_source=rss1.0mainlinkanon&utm_medium=feed
>
> I have been using Blockhosts (http://www.aczoom.com/blockhosts) for many
> years now without issue (I also use a certificate with passwords turned
> off) but I leave the port as standard 22
>
> I never tried the others, so not sure which is most effective . . .
>
> My question is two fold:
>
> 1) I was curious of what others use on Mageia - and your experiences
>
> 2) Should we not have something standard in the SSH config during
> install as a dependency?  Make it automatic so at least the standard
> config of ssh is a bit more protected from bot scans??

security is as strong as the weakest link.

users system is as secure as their password and by default you can't get
in as root



More information about the Mageia-dev mailing list