|
|
Subscribe / Log in / New account

Dealing with automated SSH password-guessing

Dealing with automated SSH password-guessing

Posted Oct 25, 2016 0:16 UTC (Tue) by jwoithe (subscriber, #10521)
Parent article: Dealing with automated SSH password-guessing

Another alternative along similar lines to fail2ban is sshguard. It has fewer dependencies than fail2ban and a number of firewall backends which can make it easier to integrate into arbitrary systems.

to post comments

Dealing with automated SSH password-guessing

Posted Oct 25, 2016 3:36 UTC (Tue) by gfa (guest, #53331) [Link]

sshguard does work with ipv6, fail2ban doesn't

Dealing with automated SSH password-guessing

Posted Oct 25, 2016 10:09 UTC (Tue) by Yorhel (subscriber, #91403) [Link]

In addition to the IPv6 support that was already mentioned, sshguard also starts with a much lower ban time (a few minutes by default, I think it was) and increases exponentially. So you don't have to worry too much about locking yourself out after a few failed login attempts.

Dealing with automated SSH password-guessing

Posted Oct 25, 2016 16:41 UTC (Tue) by zdzichu (subscriber, #17118) [Link]

sshguard looks cool. It would be even cooler if someone resurrected it's review request (https://bugzilla.redhat.com/show_bug.cgi?id=1260845). I'd like to play with sshguard when it's in Fedora,


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds