site Search:


Home Reviews Tools Forums FAQs Find Service ISP News Maps About  
 
    All Forums Hot Topics Gallery






how-to block ads

  
Forums >

OS and Software > All Things Unix > How do I secure ssh to only allow 3login attempts?

Search Topic:
 Share Topic
Posting?
Post a:
Post a:
Links: ·Forum FAQ ·Attitude Adjustment ·Linux docs ·DistroWatch ·OPLM ·FreeBSD Handbook
AuthorAll Replies


elboricua
El Subestimado
Premium
join:2001-08-12
Bronx, NY

reply to nklb

Re: How do I secure ssh to only allow 3login attem

said by nklb:

I have had lots of the generic scanning stuff lately as well, but in particular there are a couple of hosts who really hammered my box with hundreds of login attempts over a two hour or so period.

I think it would be a much more secure solution anyway to restrict the number of times a given ip can try to connect so that even if they do get the right username/pass eventually it wont do them any good.
I think the easier solution for peace of mind would be to do the following in your sshd_config

1. implement ssh key authentication only. set the option PasswordAuthentication to no

2. limit the users who can login via ssh. Set the AllowUsers option to only those users who you want to have ssh access.

3. Most important set PermitRootLogin to no

4. and lastly make sure that you are only using protocol 2
--
Sending script kiddies to /dev/null since 1995!
to forum · permalink · 2005-02-07 06:28:38 ·
Forums > OS and Software > All Things Unix

Sunday, 27-May 13:01:26 Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo
over 12.5 years online © 1999-2012 dslreports.com.
Most commented news this week
Hot Topics