When I was getting brute forced that way I just turned off remote password login and use keypairs exclusively.
Which won't work for everybody, I guess. -- Ed Ahlsen-Girard Senior Network Engineer TYBRIN Corporation tybrin.com 850-337-2830 850-337-2885 (fax) -----Original Message----- From: Sam Fourman Jr. [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 22, 2008 10:51 PM To: Parvinder Bhasin Cc: misc@openbsd.org Subject: Re: Logging failed SSH users and the passwords they typed > Is there a way to login the passwords that were used in the bruteforce > attack? I am siting trying to come up with a good reason why you would give a damn what passwords they tried? I mean for the most part they are scripts trying to BRUTE your ssh port anyhow. Sam Fourman Jr.