Subj : Block admin and root access attempts
To   : nightcrawler
From : Mro
Date : Sun Oct 26 2014 09:40 pm

  Re: Block admin and root access attempts
  By: nightcrawler to Mro on Sun Oct 26 2014 04:26 pm

 > I've never really had a problem with ftp, rlogin, etc. All the attempts
 > seem to be localized to SSH connections, trying either admin or root.
 > Recently I noticed a single IP will attempt simultanious connections,
 > taking all my nodes down. 

change your ssh port.

 > I've tried peerblock with very little success. Seems it doesn't cut down on
 > attempts at all. 

you have to use a custom block script and add ip ranges. you just cant run it
and use it to block attackers.

i put it all on facebook, take a look at it.

nothing is better than a watchful eye.  block the attackers. 
block entire ranges in your ip.can if you dont want to use peerblock.
make a honeypot. use spambait.cfg

with synchronet you are running a ton of servers on the internet.  you will
always have a lot of attack attempts.
---
 þ Synchronet þ ::: BBSES.info - free BBS services :::

.