2010/8/11 John Doe <jdmls@xxxxxxxxx>:
> From: Whit Blauvelt <whit@xxxxxxxxxxxxx>
>
>> On Tue, Aug 10, 2010 at 07:12:59PM -0400, Bob Hoffman wrote:
>> > I have a server sitting right on the net and the constant barrage of 100s
> of
>> > Ips trying thousands of times at port 22 is insane.
>> You're quite sane. Anyone likely to hit your ssh at its new port is likely
>> to try port 22 first. So if they show up there first, blocking them is good
>> - unless you have legitimate users who may forget to go to your special port
>> and so get locked out after trying the default port first.
>
> There's also port knocking...
how about enabling ssh login only with public keys ?
--
Eero,
RHCE
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
