[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Port 22 SSH common attacks
- Subject: Re: [cobalt-users] Port 22 SSH common attacks
- From: "MStan" <MStanchin@xxxxxxxxxx>
- Date: Sat Nov 10 08:03:02 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
Hi, could you please explain how you made these changes.....I have a
raq4i....also
what ssh client do you use?.
mark
----- Original Message -----
From: "MikeM" <MyRaQ@xxxxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Saturday, November 10, 2001 7:42 AM
Subject: Re: [cobalt-users] Port 22 SSH common attacks
> On 11/9/2001 at 2:57 PM flash22@xxxxxxx wrote:
>
> |On Fri, 9 Nov 2001, Zarrir Junior wrote:
> |
> |> I´ve noticed that the scans to port 22 have become very common to
my
> |> Raq machines. Does anybody know any new specific bug in Cobalt
software?
> |
> |No, but there appears to be a new tool available to the kiddies that has
> |been seen around lately...(for the old ssh1 hole). eg scanning for broken
> |ssh machines has gotten easier, expect more silliness...
> |
> =============
>
>
> At the excellent suggestion of someone on this list, I have moved my sshd
port away from port 22. A quick, easy change to the sshd config file is all
that is needed on the server, and a similar change should obviously be made
on the clients.
>
> So long as I was in the sshd config file, I also turned off support for
the ssh1 protocol, leaving only ssh2 enabled.
>
>
> (I also moved the ftpd port away from port 21 ... no more ftp scans)
>
>
>
>
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users