[188530] in North American Network Operators' Group
Re: how to deal with port scan and brute force attack from AS 8075 ?
daemon@ATHENA.MIT.EDU (Davide Davini)
Sun Apr 3 18:09:06 2016
X-Original-To: nanog@nanog.org
To: "marcel.duregards@yahoo.fr" <marcel.duregards@yahoo.fr>, nanog@nanog.org
From: Davide Davini <diotonante@gmail.com>
Date: Thu, 31 Mar 2016 15:19:32 +0200
In-Reply-To: <56FCD97D.8050201@yahoo.fr>
Errors-To: nanog-bounces@nanog.org
On 31/03/2016 10:02, marcel.duregards--- via NANOG wrote:
> We are facing a lot of port scan and brute force attack on port 22 (but
> not limited to)
Maybe not super useful in your case but talking about SSH the sysadmin
solution would be to disable password login and use just keys.
Also, as someone else said, fail2ban... because it's a lot of fun. :)
Ciao,
Davide
