Memes

44147 readers

2829 users here now

Rules:

Be civil and nice.
Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago

MODERATORS

[email protected]

1001

Brute force protection (rytter.me)

submitted 3 months ago by [email protected] to c/[email protected]

102 comments fedilink hide all child comments

Brute force protection

@memes

you are viewing a single comment's thread
view the rest of the comments

[–] Pacmanlives 13 points 3 months ago (6 children)

I remember in college editing OpenSSH source code to instead of return wrong password to a root shell prompt just to stop brute force attacks

[–] [email protected] 1 points 3 months ago (3 children)

@Pacmanlives
Couldn't you just disable root login in the sshd config?

[–] Pacmanlives 2 points 3 months ago (2 children)

Oh all of my configs are deny root ssh login or without-password. I noticed a significant decrease in scans when returning a root prompt when I did that. This was also in the mid 2000s so who knows how things would be in this day in age for a reduction in scans

[–] [email protected] 2 points 2 months ago (1 children)

@Pacmanlives
So it was a fake root prompt which tricked the bots into believing that they logged in successfully but in reality the prompt could do nothing on the system?

[–] Pacmanlives 1 points 2 months ago

Correct

load more comments (2 replies)