Linux Archive

Linux Archive (
-   Debian User (
-   -   ssh howto for debian? (

Kevin Philp 01-28-2009 03:30 PM

ssh howto for debian?
Raquel wrote:

On Wed, 28 Jan 2009 15:00:37 +0000
Kevin Philp <> wrote:

A good package to install, to help with the brute force attacks is

Even easier and better add the following to your iptables firewall.
This monitors your connections to the ssh port and drops the
connection if they try more than 4 connections in 10 minutes. I
have been using this for a while - works a treat.

"Easier and better" depends on a lot of factors, including a person's
desire to edit, directly, their iptables files. Some use Shorewall
(for which there are other solutions) or another firewall creation
tool. For me, I appreciated the solutions found in fail2ban.

100% agree with you - guess I shouldn't type in a hurry. I have used it
and it worked just fine. I switched to the iptables solution because we
were developing our own firewall script at the time and it made sense to
incorporate it and have one less security package to configure and worry
about. What I liked about the iptables solution was that it cut off the
hacker after a predetermined number of attempts rather than letting the
attacks mount and then then pick it up from a log-file scan. However
fail2ban can also block at the tcpwrappers level so is a bit more
flexible on how it blocks.

For those interested another popular script is at:

To UNSUBSCRIBE, email to
with a subject of "unsubscribe". Trouble? Contact

Daniel Dalton 01-28-2009 07:39 PM

ssh howto for debian?

Thanks very much to everyone that replied to my ssh question.

That's some good information, and I'll go off and do my research.

Thanks very much, it's greatly appreciated.



To UNSUBSCRIBE, email to
with a subject of "unsubscribe". Trouble? Contact

All times are GMT. The time now is 01:40 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.