Associate
Hi all,
I have a Ubuntu 6.06LTS Server running sshd. I have "real" users conencting and sending data to me, but i'm finding I am having a lot of break-in attempts too - people putting obvious names like "admin" and "test" and of course "root", and trying to break in.
I have opened port 22 on my firewall and forwarded it to the Linux server. The real users are connecting on port 22 - i've noticed the break-in attempts are on high ports around 3000-4500 or so. Unfortunately, my users don't have static WAN addresses, so I can't restrict access that way. Is there anything else I can do to protect the server and its data from being attacked?
Matt
I have a Ubuntu 6.06LTS Server running sshd. I have "real" users conencting and sending data to me, but i'm finding I am having a lot of break-in attempts too - people putting obvious names like "admin" and "test" and of course "root", and trying to break in.
I have opened port 22 on my firewall and forwarded it to the Linux server. The real users are connecting on port 22 - i've noticed the break-in attempts are on high ports around 3000-4500 or so. Unfortunately, my users don't have static WAN addresses, so I can't restrict access that way. Is there anything else I can do to protect the server and its data from being attacked?
Matt