From owner-freebsd-questions@FreeBSD.ORG Sun Feb 12 11:57:51 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AB53416A420 for ; Sun, 12 Feb 2006 11:57:51 +0000 (GMT) (envelope-from m.seaman@infracaninophile.co.uk) Received: from smtp.infracaninophile.co.uk (happy-idiot-talk.infracaninophile.co.uk [81.187.76.162]) by mx1.FreeBSD.org (Postfix) with ESMTP id B9EBC43D45 for ; Sun, 12 Feb 2006 11:57:49 +0000 (GMT) (envelope-from m.seaman@infracaninophile.co.uk) Received: from [IPv6:::1] (localhost [IPv6:::1]) by smtp.infracaninophile.co.uk (8.13.4/8.13.4) with ESMTP id k1CBvdbO087196; Sun, 12 Feb 2006 11:57:39 GMT (envelope-from m.seaman@infracaninophile.co.uk) Message-ID: <43EF22AD.4070007@infracaninophile.co.uk> Date: Sun, 12 Feb 2006 11:57:33 +0000 From: Matthew Seaman Organization: Infracaninophile User-Agent: Thunderbird 1.5 (X11/20060113) MIME-Version: 1.0 To: lars@gmx.at References: <1059667590.20060212073915@mail333.com> <1139736497.17153.14.camel@lmail.bathnetworks.co.uk> <43EF10CD.6090003@gmx.at> In-Reply-To: <43EF10CD.6090003@gmx.at> X-Enigmail-Version: 0.94.0.0 Content-Type: multipart/signed; micalg=pgp-ripemd160; protocol="application/pgp-signature"; boundary="------------enigFDF243C0F93E9FECB54ABBD8" X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0.2 (smtp.infracaninophile.co.uk [IPv6:::1]); Sun, 12 Feb 2006 11:57:39 +0000 (GMT) X-Virus-Scanned: ClamAV 0.88/1283/Thu Feb 9 20:55:06 2006 on happy-idiot-talk.infracaninophile.co.uk X-Virus-Status: Clean X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,NO_RELAYS autolearn=ham version=3.1.0 X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on happy-idiot-talk.infracaninophile.co.uk Cc: "freebsd-questions@freebsd.org" Subject: Re: incorrect logins X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 12 Feb 2006 11:57:51 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enigFDF243C0F93E9FECB54ABBD8 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: quoted-printable lars wrote: > Either you > 1 configure SSH to only allow logins from certain hostnames or > IP addresses or for certain users, and/or >=20 > 2 install a program to watch your logfiles and modify > your firewall rules dynamically according to specified > triggers, > like /usr/ports/security/denyhosts, and/or >=20 > 3 choose strong passwords or -phrases and not care You forgot: 4 Use SSH key based auth exclusively. Turn off all of the password stuff in sshd_config. Laugh at the poor fools trying to break in. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW --------------enigFDF243C0F93E9FECB54ABBD8 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFD7yKz8Mjk52CukIwRA7JbAJ9jFvfcm9wd8G4uWENtMrlkDQVuKQCdHziW 2xV5eRcj7W6tSHt/7c9aAak= =g3Ca -----END PGP SIGNATURE----- --------------enigFDF243C0F93E9FECB54ABBD8--