rss.png profile for ebal on Stack Exchange, a network of free, community-driven Q&A sites
ssh brute force attack in 40min linux installation

WTF, in only 40min, ssh brute force attack !

Jul 14 17:54:56 server1 sshd[1135]: Server listening on port 22.

Jul 14 18:36:16 server1 sshd[2325]: Invalid user center from

thank Venema for TCP Wrapper

I believe that this is a security risk for new installations.

Ok, root cant ssh access the server.
But common!

We create a simple user to login and then su to root.
I dont want ssh daemon to be started by default, before i finished with my linux server configuration and add some security measures to prevent issues like that.

And the most significant part is that i had configured my router sshd port to a non known tcp port !!!!

Tag(s): centos, ssh