On 2006/11/23 15:14, Igor Sobrado wrote: > 2. There are a lot of brute force attacks from countries like > Korea these days. These attacks will be less effective if > the intruders get access to an unprivileged account (even if > it is in the wheel group).
On a typical system, these are better blocked at the firewall. If you need offsite SSH access from unknown IP addresses, you can use authpf to open the ports instead, which gives you a single point of control. > Some of these tools try passwords that I would not call "low- > quality ones". "PasswordAuthentication no" is quite effective against this.
