Firewalled to the outside world most likely. -----Original Message----- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of John R Pierce Sent: Thursday, July 30, 2015 4:41 PM To: centos@centos.org Subject: Re: [CentOS] Fedora change that will probably affect RHEL
On 7/30/2015 2:23 PM, Nathan Duehr wrote: >> >On Jul 30, 2015, at 12:20, Warren Young<w...@etr-usa.com> wrote: >> > >> >Meanwhile over here in CentOS land, you still see SSH password guessers >> >banging on every public IP that responds to port 22. Why? Because it >> >still occasionally works. Increase the password strength minima, and this >> >class of worm, too, will quickly die out. > If the Windows fix was firewall on by default, why isn’t that the appropriate > “fix" for Linux distros? Why mess with the password strength or which daemons > are running? > > Seems like it adds the necessary step of “STOP: If you turn off this, you’d > better know what you’re doing”, without messing around with default settings > of packages and/or password library configuration files. if sshd is firewalled by default, why even run it? _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
