That's very common. Keep the ssh service disabled until you need it...
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Cristian C. Sent: Friday, January 18, 2008 4:58 AM To: [email protected] Subject: [Efw-user] SSh Attack Hi I was trying EWF 2.2 for two weeks and I'm very satisfied with the product. Yesterday I was checking the logs and detect a lot ssh connection trying to access to the firewall. In this case, I solved this problem partially blocking the source ip address on the System Acces Firewall Menu to access to the EFW. But I would like to know if exist a way to block this issues automatically. I mean, there was many many shots by second (20 more or less) probing different passwords for the root user and many others. Probably exist a way to put this kind of attacks on a black list or may be restrict session request by seconds... or something like that. Regards. CC ------------------------------------------------------------ ------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Efw-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/efw-user ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Efw-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/efw-user
