*** For details on how to be removed from this list visit the ***
*** CCP4 home page http://www.ccp4.ac.uk ***
Another thing you can do is in the file /etc/sshd_config (or its
equivalent), put the line
AllowUsers dorothy max phil
to limit ssh logins to those named individuals. I think there is also an
AllowHosts
This obviously is more restrictive but it has the delightful side-effect
of causing the logins of nefarious evildoers to hang.
On Thu, 15 Jun 2006, Peter Adrian Meyer wrote:
*** For details on how to be removed from this list visit the ***
*** CCP4 home page http://www.ccp4.ac.uk ***
Hi Charles,
You might want to investigate denyhosts
(http://denyhosts.sourceforge.net/), which is designed to block IP
addresses conducting ssh attacks. In my experience, it's worked well
(some of our linux machines were frequently recivieving dictionary
attacks, which this appears to have fixed).
Pete
*** For details on how to be removed from this list visit the ***
*** CCP4 home page http://www.ccp4.ac.uk ***
Dear All,
we have been experiencing a large number of ssh attacks on the machine
supporting the ccp4 webserver. At this time it is holding, but I
cannot guarantee it.
For you information the offending host is
202.108.40.109
which has been active for this sort of thing for about 12 months.
Charles Ballard
CCP4
Pete Meyer
Fu Lab
BMCB grad student
Cornell University
