On Friday 11 November 2005 16:44, stan wrote: > I;ve got a machien that seems to getting atacked by what appears to be a > simplistic "brute force" attck. it's getting hit multiple ties a second > with bogus root login attempts, my guess is that they are trying dictionary > atacks on the password for root. > > Any sugestions as to how to deal with this? Change the port ssh is > listening on maybe?
Ignore them. If you have a reasonable password, what does it cost you? You could complain to each and every ISP that the attacks come from, but you'll have a new hobby. Yes, you could also change the port that sshd listens to, but you have to then tell anyone who uses your machine remotely where it is, and as an extra treat you might get some interest in a vandal and they'll go hunting for the ssh port. Why bother? Think of them as ground lice. --STeve Andre'

