Re: brute force ssh attempt mitigation

From: Alexandro Silva <alexoslabs gmail com>
To: gnome-infrastructure gnome org
Subject: Re: brute force ssh attempt mitigation
Date: Wed, 31 Mar 2010 12:07:14 -0300

On 03/31/2010 12:02 PM, Christer Edwards wrote:

On Wed, Mar 31, 2010 at 8:50 AM, Olav Vitters<olav vitters nl>  wrote:


Yes.

Error message is due to the NFS mounts on puppet being broken
(/home/admin, /home/users). You can still log in though (aside from home
dir not existing complaints)

--
Regards,
Olav


So I'm hearing that bruteforce mitigation via denyhosts won't add any
additional security, and I agree (after understanding better how
accounts are managed). Does this mean let's just not bother? I don't
think it'll hurt, and if anything it'll simply clean up the logs and
cut down on the noise a bit.

Hi,

I'm not following this thread but I suggest the implementation of a HIDS[1] on the servers, so we proactive actions against many threats.


[1] http://www.ossec.net

Best Regards,

Alexandro Silva

References:
- brute force ssh attempt mitigation
  - From: Christer Edwards
- Re: brute force ssh attempt mitigation
  - From: Jeff Schroeder
- Re: brute force ssh attempt mitigation
  - From: Christer Edwards
- Re: brute force ssh attempt mitigation
  - From: Olav Vitters
- Re: brute force ssh attempt mitigation
  - From: Christer Edwards
- Re: brute force ssh attempt mitigation
  - From: Olav Vitters
- Re: brute force ssh attempt mitigation
  - From: Christer Edwards

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]