[Freedombox-discuss] Block brute force login attacks?
diocles at debian.org
Tue Mar 18 21:51:04 UTC 2014
On 18 March 2014 12:45, Petter Reinholdtsen <pere at hungry.com> wrote:
> On all my machines, I install denyhosts with a two hour timeout
> (DAEMON_PURGE = 2h), to block those trying to brute force a ssh login.
> Should we do something similar on the Freedombox?
Hmm, is the ssh port going to be public-facing?
If it's being exposed via pagekite etc., it would be worth checking
whether denyhosts is going to do the right thing (i.e. block the
connecting IP, not the proxy's IP, if you see what I mean).
Tim Retout <diocles at debian.org>
More information about the Freedombox-discuss