On Wed, 2008-02-27 at 21:24 +0100, Remy Blank wrote: > A simple solution is to run sshd on a > non-standard, high-numbered port, e.g. in the 30'000. Bots only ever try > to connect on port 22. This will *not* improve the protection of your > server, but it will avoid having your logs spammed.
+1 I hosed my router, and had to go back to an old one that could only forward port 22 to an internal machine port 22. I got lots of brute force attacks. Well, most of them only tried about 5 passwords each, so not exactly brute force... Anyway, once I upgraded my router again and forwarded port x0000 to port 22, I haven't seen one since. HTH, -- Iain Buchanan <iaindb at netspace dot net dot au> Linux - because software problems should not cost money. -- Shlomi Fish -- gentoo-user@lists.gentoo.org mailing list
