On Die, 2009-09-15 at 14:46 -0500, Cliff Hayes wrote: [...] > Now I have to deal with the jerks. I started out running with no firewall The "jerks" are usually bots looking for some default installations. > (not comfortable with that) and have the typical ssh probes. I didn't want The simple solution: - Block port 22 via /etc/hosts.deny and /etc/hosts.allow for all networks except the ones where you really come from - and/or make sshd listen on some other port (and use this other above for that)
That's of course not the best solution. Better to figure out the really needed ports and just open them up (and only to the necessary networks). Bernd -- Firmix Software GmbH http://www.firmix.at/ mobil: +43 664 4416156 fax: +43 1 7890849-55 Embedded Linux Development and Services _______________________________________________ NOTE: If there is a disclaimer or other legal boilerplate in the above message, it is NULL AND VOID. You may ignore it. Visit http://www.mimedefang.org and http://www.roaringpenguin.com MIMEDefang mailing list [email protected] http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
