[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] List of Relays' Available SSH Auth Methods

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] List of Relays' Available SSH Auth Methods
From: Felix Buedenhoelzer <tor@xxxxxxxxxxxxxx>
Date: Tue, 18 Nov 2014 21:04:30 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 18 Nov 2014 15:13:22 -0500
In-reply-to: <1416332431.4068619.192520997.504FAC30@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <546B6131.5060103@xxxxxxxxxxx> <546B6597.7050909@xxxxxxxxx> <546B70B2.7020805@xxxxxx> <CAKCAbMi6w8P_f6VT01B25NVcJUtt5G_na9tF4iNd8FBrMFW+Yw@xxxxxxxxxxxxxx> <1416332431.4068619.192520997.504FAC30@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.2.0

On 18.11.2014 18:40, Dan Thill wrote:
> In my equally limited experience, my piddly middle relay went from about
> 100 SSH related fail2bans/day to zero when I changed the port.  I fully
> recognize changing the port is mere obfuscation (I use public key
> anyways), but I just got tired of seeing the same list of abusers
> (China, Russia) in the logs every single day.
> _______________________________________________
> tor-relays mailing list
> tor-relays@xxxxxxxxxxxxxxxxxxxx
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

A good option to avoid bruteforces from these "special" countries is to
combine sshd with geo-IP based blocking. I am using a python based
script to block countrys based on their two-letter countrycode. Just
block all the countries you don’t live/work/travel in combine it with
fail2ban, disable root login and you are probably as safe as with key
based logins.

BR
Felix
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] List of Relays' Available SSH Auth Methods
  - From: Libertas
- Re: [tor-relays] List of Relays' Available SSH Auth Methods
  - From: Jeroen Massar
- Re: [tor-relays] List of Relays' Available SSH Auth Methods
  - From: Toralf FÃrster
- Re: [tor-relays] List of Relays' Available SSH Auth Methods
  - From: Zack Weinberg
- Re: [tor-relays] List of Relays' Available SSH Auth Methods
  - From: Dan Thill

Prev by Author: Re: [tor-relays] Fast Exit Node Operators - ISP in US
Next by Author: Re: [tor-relays] Bwauths Measures question,
Previous by thread: Re: [tor-relays] List of Relays' Available SSH Auth Methods
Next by thread: Re: [tor-relays] List of Relays' Available SSH Auth Methods
Index(es):
- Author
- Thread