Douglas Muth on 7 Jun 2012 18:10:55 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] SSH brute force attacks using PlcmSpIp

On Thu, Jun 7, 2012 at 9:09 PM, JP Vossen <> wrote:
> May be of special interest to VoIP folks...
> Today a non-public server I manage on a Comcast residential DHCP IP in NJ
> saw a small SSH brute-force attack from Virpus Networks.  My own Linode
> hosted server was also attacked by them in Jan & Feb from and
>  Today's attack was from

Might be a good time for fail2ban.  I think the default is 6 invalid
password attempts before an iptables rule is written that drops
everything that IP.

-- Doug
Philadelphia Linux Users Group         --
Announcements -
General Discussion  --