On Sunday 07 October 2007, Remy Blank wrote: > Mick wrote: > > I have already disabled PAM authentication on sshd so that only users > > with a public key in their ~/.ssh can login. > > This is the first and most important step. This means that the only real > problem is that your logs fill with failed log in attempts. > > The easiest way I have found to avoid that is to change the port number > of the SSH daemon to something else than 22.
That's right, my standard practice for this sort of problem is to disable root & passwd authentication in favour of public key and then move the ssh port away from the bots. The problem is that on this occasion, this is not my server. I'll have a word with the owner and see what he thinks. -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.
