On Die, 2009-09-15 at 14:46 -0500, Cliff Hayes wrote:
[...]
> Now I have to deal with the jerks.  I started out running with no firewall
The "jerks" are usually bots looking for some default installations.
> (not comfortable with that) and have the typical ssh probes.  I didn't want
The simple solution:
- Block port 22 via /etc/hosts.deny and /etc/hosts.allow for all
networks except the ones
  where you really come from
- and/or make sshd listen on some other port (and use this other above
for that)

That's of course not the best solution. Better to figure out the really
needed ports and just open them up (and only to the necessary networks).

Bernd
--
Firmix Software GmbH                   http://www.firmix.at/
mobil: +43 664 4416156                 fax: +43 1 7890849-55
          Embedded Linux Development and Services

_______________________________________________
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID.  You may ignore it.

Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list MIMEDefang@list...
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang