 |
|
 |
| |
Have you ever seen something like the following in you messages log in linux?
Oct 16 03:45:19 sshd[9367]: Invalid user admin from 212.122.161.247
Oct 16 03:44:57 sshd[9255]: Invalid user apple from 212.122.161.247
Oct 16 03:44:59 sshd[9259]: Invalid user mysql from 212.122.161.247
Oct 16 03:45:00 sshd[9263]: Invalid user linux from 212.122.161.247
Oct 16 03:45:05 sshd[9321]: Invalid user root from 212.122.161.247
If so, then you have been a target for an ssh attack.
SSHield is a BASH only script, our hope is to create an easy installation defence system.
Eventually we would like to have distro packages, for one click installs.
We have released the first version, its quick and dirty and works well.
Now doubt there is room for further improvement, we hope that you will be able to contribute to
this effort.
If you find SSHield usefull we would be very greatfull if you could show us support by putting the following code on your web service applicaitons.
The link will look like this;
|
|
 |
 |
 |
|
|
|
|
|
| |
What is SSHield?
A collection of BASH based scripts that block blacklisted ip addresses under a collaborative use policy, this means we need your help!
What is an SSH attack?
An automated dictionary attempt to gain access to a linux ssh service by brute force trial and error of many common and standard password combinations (e.g: admin/guest).
|
|
| |
|
|
| |
more |
|
|
|
|
|
