Question
Too many ssh unauthorized login attempts - how to prevent?
This appears daily in logwatch under PAM. Is there anyway to prevent it? I already have configured sshd to prevent root login, and use fail2ban.
unknown (210.66.73.143): 189 Time(s)
root (222.186.38.109): 75 Time(s)
root (220.177.198.26): 74 Time(s)
root (220.177.198.43): 55 Time(s)
root (115.239.248.51): 50 Time(s)
root (115.239.248.61): 50 Time(s)
root (117.21.191.210): 50 Time(s)
root (117.21.191.35): 50 Time(s)
root (117.21.226.64): 50 Time(s)
root (202.109.143.35): 50 Time(s)
I guess I could switch login to certificate only, but that limits how I can access my server.
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×