Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 2 Mar 2005 08:53:18 +0100 (CET)
From:      Stevan Tiefert <stevan@rot-1.de>
To:        "Eugene M. Minkovskii" <emin@mccme.ru>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: sshd
Message-ID:  <20050302085135.B23556@mail.rot-1.de>
In-Reply-To: <20050302074659.GA22958@mccme.ru>
References:  <20050302075507.P23359@mail.rot-1.de> <20050302074659.GA22958@mccme.ru>
next in thread | previous in thread | raw e-mail | index | archive | help 


On Wed, 2 Mar 2005, Eugene M. Minkovskii wrote:

> On Wed, Mar 02, 2005 at 08:00:13AM +0100, Stevan Tiefert wrote:
> " Hello list,
> "
> " when I am watching the /var/log/auth.log I see many missed logins from
> " IP-addresses I never tried to login from. Am I right that they is a hac=
ker
> " trying to login on my mashine, because he was using loginnames I never
> " created on my mashine like patrick, lydia, green, admin, and so on...?
> "
> " With regards
> " Stevan Tiefert
>
> It seems to you are right. If you know that you go to you mashine
> only from one or two IP, you can write it in your firewall. For
> example, if you use ipfw:
>
> ext_if=3Drl0
> trusted_ip=3D1.2.3.4,3.4.2.1
> ipfw add allow tcp from $trusted_ip to me ssh in recv $ext_if
> ipfw add allow tcp from me ssh to $trusted_ip out xmit $ext_if
>
> Or something else.
>
>
> " _______________________________________________
> " freebsd-questions@freebsd.org mailing list
> " http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> " To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd=
=2Eorg"
>
> --
> Sensory  yours, Eugene  Minkovskii
> =F3=C5=CE=D3=CF=D2=CE=CF =D7=C1=DB,   =E5=D7=C7=C5=CE=C9=CA =ED=C9=CE=D8=
=CB=CF=D7=D3=CB=C9=CA
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.o=
rg"
>

Thanks Eugene, but I can not close myself out with a firewall. I need the
access to my system over the internet. Am I right that in this case, only
a good password is protecting me?

With regards
Stevan Tiefert

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050302085135.B23556>