... Sigh ......

[Ken Moffat]

Ben Duncan wrote:
> Me to person setting up my Web Server:
>
> Dont' ya think we outta move the sshd port to a unknown port and
> use psk ?
>
> person setting up web server:
>
> naw, I never have had any problems .......
>
> Me at 3 PM yesterday:
>
> Ok, I'll turn sshd on with passwords .
>
> Me at 12 noon today:
>
> &$%^@#%$!(@&#$^!)#$%^)!@(#%$&%^ ...
> after seeing that someone launched a dictionary attack JUST
> 6 hours I set up sshd - that ran for 8 hours against my server ...
>
> ME to web person: sshd has been moved to port #### and WE will be using
> psk starting tommorow ......
>
> Web Person: Your $HITTING me, I never had any problems before ....
>

Have you tried "denyhosts"? Catches dictionary attacks and adds the
attacker to /etc/hosts.deny.