Linux.com

What is Linux?

Feeds

Special Offers

Newsvac

Strong passwords no panacea as SSH brute-force attacks rise

May 17, 2008 (12:00:00 AM) - 3 months, 1 week ago

Thanks to the end-of-term for many colleges and some K12 schools, brute-force attacks against SSH servers surged sharply this past weekend, according to the SANS Internet Storm Center. The sudden jump in SSH attacks merits a re-examination of how such servers should be properly secured. Jim Owens and Jeanna Matthews of the Department of Computer Science at Clarkson University have published a paper on the methods that such attacks frequently employ and on the best ways to defeat them.

Comments

on Strong passwords no panacea as SSH brute-force attacks rise

Note: Comments are owned by the poster. We are not responsible for their content.

Iptables rate limiting one liner

Posted by: Anonymous [ip: 192.168.1.253] on May 17, 2008 05:35 PM

Rate limiting new connection attempts using iptables stop all brute force attacks with a one liner:
iptables -I INPUT -p TCP -m state --state NEW -m limit --limit 10/minute --limit-burst 5 -j ACCEPT

Strong passwords no panacea as SSH brute-force attacks rise

Posted by: proopnarine on May 17, 2008 10:30 PM

What about the denyhosts daemon? Any opinions on how useful it is?

Strong passwords no panacea as SSH brute-force attacks rise

Posted by: Anonymous [ip: 74.86.156.135] on May 17, 2008 11:49 PM

I would also look into port knocking combined with fail2ban

Linux.com

What is Linux?

Feeds

Special Offers

Newsvac

Strong passwords no panacea as SSH brute-force attacks rise

Related Links

Comments

Iptables rate limiting one liner

Strong passwords no panacea as SSH brute-force attacks rise

Strong passwords no panacea as SSH brute-force attacks rise

This story has been archived. Comments can no longer be posted.