SSH server owners, beware

In case you haven’t noticed yet, your machine may be under attacks from botnets. Go check your /var/log/auth.log (at least under Debian) and see for yourself. Botnets are attempting to crack your passwords using brute-force.

Recommended strategies:
  • Change port. I’ve picked 2022.
  • Disable password logins. Use only authentication using secure keys. Too much of a hassle for me, especially on a server I share with others, since we’d have to carry our key files around.


via blog.vucica.net

Leave a Reply

Your email address will not be published.

 

What is 14 + 8 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)

This site uses Akismet to reduce spam. Learn how your comment data is processed.