Re: Defending againts simultanious attacks

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Mohd Syakir wrote:
> 
> any suggestions?

I use a combination of the already mentioned DenyHosts, and also I turn
off password authentication. I then generate SSH key pairs, which
ensures that only machines I want connecting that have the key, can
connect.

With that and the DenyHosts utility, when someone offends a) they can't
connect to begin with because of the keys, and b) DenyHosts adds them to
a deny file and won't allow them to connect again from the offending IP.

There are a number of ways to accomplish what you seek.

Max

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with CentOS - http://enigmail.mozdev.org

iD8DBQFF1HAlHoeeepPau2ERAjV4AKDBoegJ6U9g4E/PjAcWgKhP9XgFwgCeOZzQ
7dYsvPJH+9BYsz9vShG8Jc8=
=4eYY
-----END PGP SIGNATURE-----
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos

[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux