Looking at the article, the text at Samhain, and the man page of sshd, I could see no mention of sshd itself being able to implement automatic banning or lengthening moratorium times between retry attempts for hosts that keep trying wrong passwords. Surely this would be the simplest and most secure solution? Or did I just miss the place where this sshd capability is mentioned?
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds