Have you tried configuring ssh on an alternative port? It sure prevents most drive by brute force scripts to operate.
In our environment we don't even allow ssh unless it is to certain fixed ip addresses (for staff use only).
2k warning emails is alot, almost seems targetted.
Search found 2 matches
- 19 Mar 2010, 13:51
- Forum: Suggestions (csf)
- Topic: another lot of sshd not being blocked
- Replies: 7
- Views: 9556
- 15 Mar 2010, 22:46
- Forum: Suggestions (csf)
- Topic: ARF (Abuse Reporting Format)
- Replies: 4
- Views: 7385
ARF (Abuse Reporting Format)
Greetings! I've been using csf ever since i discovered it. It's awesome. Even recommended it today to an abuse dept. teamleader (of a company with 4k+ servers) after resolving an abuse matter. During the chat i had with this person, ARF came up. It looks like an upcoming standard for reporting abuse...