Re: attack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: fedora-list@xxxxxxxxxx
Subject: Re: attack
From: James Wilkinson <fedora@xxxxxxxxxxxxxxxxxxx>
Date: Mon, 9 May 2005 17:49:04 +0100
In-reply-to: <000001c554a4$a15eee10$7a0101c0@pccat03>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <000001c554a4$a15eee10$7a0101c0@pccat03>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mutt/1.5.6+20040907i

roland brouwers wrote:
> Someone is attacking for a certain time on port SSH2
> He is trying to login as root and uses all kind of usernames.
> See annexed textfile 
> 
> How can I block a user after x failed logins?

Assuming your username is roland, put
AllowUsers roland
in /etc/ssh/sshd_config

This will mean that no-one will be able to log in directly as root. If
you want to log in as root remotely, log in as yourself and use
su -

(Arguably you should be doing this anyway. Or setting up sudo to let you
do what you need to do).

Also see: man sshd_config and the AllowGroups keyword.

Hope this helps,

James.

-- 
E-mail address: james | When did you last back up your system?
@westexe.demon.co.uk  |

References:
- attack
  - From: roland brouwers

Prev by Date: moving from gnome to kde
Next by Date: Re: MP3 Split Program for Linux?
Previous by thread: Re: attack
Next by thread: Need a good repository for rpm's
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux