Comments on: Distributed SSH Brute Force Attacks

By: Mitigating SSH Brute Force Attacks | InfoSecStuff

Mitigating SSH Brute Force Attacks | InfoSecStuff — Fri, 27 Aug 2010 01:44:06 +0000

[...] or write a script to block them automatically based on log entries. There are also a number of blacklists available on the Internet that provide a good starting point of hosts/networks to block even if they [...]

By: Håkon Alstadheim

Håkon Alstadheim — Sun, 03 May 2009 11:15:23 +0000

Hi, I used to have one of the entries in your blacklist-list at my website
(http://www.alstadheim.priv.no/cgi-bin/svarteliste). That link should be removed from the list.

It has been discontinued. There is no point in running such a thing in isolation any more, since most serious attacs nowadays are distributed slow attacks. To stop those we’d need a distributed approach, like taking port 22 hits from dshield.org.

I don’t have much time for IT-security work anymore, so the idea is hereby put into the public domain.

By: Nerd Gene » Blog Archive » Prevent port scans and SSH brute force

Nerd Gene » Blog Archive » Prevent port scans and SSH brute force — Fri, 19 Dec 2008 19:11:12 +0000

[...] the influx of reports about botnets doing SSH brute force attacks, I decided to check my own server logs. Sure enough, I [...]

By: Chinese Sandwich Babies Take Over Duh Interwebs | We Break Things

Chinese Sandwich Babies Take Over Duh Interwebs | We Break Things — Fri, 19 Dec 2008 15:31:00 +0000

[...] [3] http://edwardlucas.blogspot.com/2008/12/cyberwarfare.html [4] http://asert.arbornetworks.com/2008/12/distributed-ssh-brute-force-attacks/ Share and Enjoy: These icons link to social bookmarking sites where readers can share and [...]

By: The Linux Mint Blog » Blog Archive » The Mint Newsletter - issue 69

The Linux Mint Blog » Blog Archive » The Mint Newsletter - issue 69 — Mon, 15 Dec 2008 21:37:10 +0000

[...] SSH Brute Force Attacks confounds [...]