[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Port 22 SSH common attacks

Subject: Re: [cobalt-users] Port 22 SSH common attacks
From: "MikeM" <MyRaQ@xxxxxxxxx>
Date: Sat Nov 10 04:47:02 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On 11/9/2001 at 2:57 PM flash22@xxxxxxx wrote:

|On Fri, 9 Nov 2001, Zarrir Junior wrote:
|
|>      I´ve noticed that the scans to port 22 have become very common to my
|> Raq machines. Does anybody know any new specific bug in Cobalt software?
|
|No, but there appears to be a new tool available to the kiddies that has
|been seen around lately...(for the old ssh1 hole). eg scanning for broken
|ssh machines has gotten easier, expect more silliness...
|
=============


At the excellent suggestion of someone on this list, I have moved my sshd port away from port 22.  A quick, easy change to the sshd config file is all that is needed on the server, and a similar change should obviously be made on the clients.

So long as I was in the sshd config file, I also turned off support for the ssh1 protocol, leaving only ssh2 enabled.


(I also moved the ftpd port away from port 21 ... no more ftp scans)

Follow-Ups:
- Re: [cobalt-users] Port 22 SSH common attacks
  - From: MStan

References:
- Re: [cobalt-users] Port 22 SSH common attacks
  - From: flash22

Prev by Date: RE: [cobalt-users] sub domain - without www
Next by Date: Re: [cobalt-users] Are RaQs here to stay? (opinions wanted)
Previous by thread: Re: [cobalt-users] Port 22 SSH common attacks
Next by thread: Re: [cobalt-users] Port 22 SSH common attacks

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index