Possible break-in attempt!

Discussion in 'Installation/Configuration' started by stefki, Mar 23, 2009.

  1. stefki

    stefki New Member

    HI i`m running a Debian Server as well but i got a lot of attacks on my SSH port

    reverse mapping checking getaddrinfo for 89.**** failed - POSSIBLE BREAK-IN ATTEMPT!

    Mar 23 22:39:21 dserver sshd[2340]: subsystem request for sftp
    Mar 23 22:39:21 dserver sshd[2342]: (pam_unix) session opened for user root by (uid=0)

    my port SSH is not 22 i have changed, but i still have attacks, does anybody know how to protect from this ?
  2. falko

    falko Super Moderator ISPConfig Developer

    You can install fail2ban or DenyHosts to prevent brute-force attacks.

Share This Page