Archive for July, 2010

Denyhosts and other ssh security

Saturday, July 24th, 2010

We have several servers exposed to the internet.  Being Linux servers, we manage them by ssh.  For security, we only allow key access — no passwords.  But we still get a HUGE number of login attempts from — how shall I put it — unauthorized users.  We always had no passwords set (! in the shadow file, not blank) and root disallowed from ssh so nobody could have logged in, but they still tried.  Even after I turned off PasswordAuthentication, we still got attempts.
(more…)