[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SSH Scans

To: lug-l@xxxxxxx
Subject: Re: SSH Scans
From: Steven Isaacson <spisaacs@xxxxxxx>
Date: Thu, 14 Feb 2002 00:36:11 -0500

* Adam E. Shirey (aeshirey@xxxxxxx) wrote:
> > It looks to me after reading discussions online that they are attempting
> > to find out if you are running an exploitable version of ssh. So the
> > best bet is to make sure that you are running a current/patched version
> > of ssh.
> 
> As far as that goes, you could probably just install portsentry and set
> it up to catch scans. If you intend on accessing your computer via ssh
> on specific computers, you can add them to hosts to ignore.

Yeah I am not that worried about it since these are very slow scans and
my ssh client is fine. Portsentry would only work if I didn't have ssh
installed but since ssh is bound to port 22 portsentry wouldn't be able
to do anythin. Portsentry is a useful program though to stop unwanted
scans/attacks.

-steve
--
Steven Isaacson <spisaacs@xxxxxxx> http://www.csl.mtu.edu/~spisaacs/
AIM:spi516 "Need to be proud of what you are..." - Echo Image

References:
- SSH Scans
  - From: Steven Isaacson
- Re: SSH Scans
  - From: Adam E. Shirey

Prev by Date: Re: IRC server reminder
Next by Date: Looking for a small hdd
Previous by thread: Re: SSH Scans
Next by thread: IRC server reminder
Index(es):
- Date
- Thread