break-in attempt in my machine
Karl Auer
kauer at biplane.com.au
Sun Aug 28 01:39:07 UTC 2016
On Sat, 2016-08-27 at 21:58 +1000, Karl Auer wrote:
> Having ssh open to the world is better than having most other things
> open to the world. but there are quite a few things you can do to
> make a successful attack less likely. In order of goodness:
Here's a blog entry with more specifics on how do do the things I
suggested:
http://biplane.com.au/blog/?p=426
Thanks Jonesy for the sshguard suggestion. Looks quite a bit simpler
than fail2ban.
By the way, anyone that has ssh access open to the world MUST take
extra precautions. At an absolute minimum, any account that can log in
via ssh MUST have a VERY GOOD PASSWORD - twenty or thirty random
characters including numbers, punctuation and both cases. Otherwise you
WILL get hacked. But it would be a much better idea to read the above
blog entry and implement the first few ideas at least.
Regards, K.
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Karl Auer (kauer at biplane.com.au)
http://www.biplane.com.au/kauer
http://twitter.com/kauer389
GPG fingerprint: E00D 64ED 9C6A 8605 21E0 0ED0 EE64 2BEE CBCB C38B
Old fingerprint: 3C41 82BE A9E7 99A1 B931 5AE7 7638 0147 2C3C 2AC4
More information about the ubuntu-users
mailing list