[mythtv-users] Semi-OT: Blocking Brute Force SSH attacks
Michael Starks
mythtv at michaelstarks.com
Sun Oct 21 16:04:12 UTC 2007
Jay R. Ashworth wrote:
> If you've tunneled SSH traffic through to your Mythbox, you're likely
> the target of brute-force SSH attacks, some of which might well work.
>
> The most elegant solution I've found so far is here:
>
> http://www.la-samhna.de/library/brutessh.html#5
>
> This won't block attacks that "know" about a specific bug in your sshd,
> so you need to stay updated, but for the dictionary attacks it will
> work nicely, and it'll sure keep your logs from growing without
> bounds...
I have found OSSEC to be a much more complete, flexible, and secure
solution than fail2ban and denyhosts, as others have mentioned.
More information about the mythtv-users
mailing list