Jump to content
Read the Funtoo Newsletter: Summer 2023 ×

failed ssh logins from unknown IP addresses?


Recommended Posts

I recently set up a spare computer at my home to be a media server and so I can log in remotely via ssh. I have a dynamic DNS account set up so I don't have to know my IP address. Anyway, I turned on the monitor attached to it and saw that there had been a few apparently failed login attempts via ssh from a few IP addresses. I looked them up via Google, and they were from Canada, Vietnam, and China. It made me wonder if I ought to take some extra security measures since I have port 22, 80, 443, and 25565 currently exposed to the internet.

 

Does anyone have any suggestions for measures I ought to take?

Link to comment
Share on other sites

2 factor authentication with passoword + public keys, also the google authenticator is anther nice options for 2 factor, there's tutorials out there on how to do this.

But basically is about to set the AthenticationMethods variable in sshd_confing in the order in wich you require them, you can also use 2 public keys.

 

Also reevaluate if you really need 80, and maybe setup some authentication at the http server level so It's more private.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...