Need suggestions on solution to SSHD and ProFTPD attacks

BooDaddy

Verified User
Joined
Feb 20, 2009
Messages
46
Hello All,
Lately I have noticed a rise in attempted attacks on SSHD and ProFTPD logins. This only recently started, but it looks as if it may be a continued attacked. Luckily nothing seems like it has been breached, but I would like to block IP's of the attackers and prevent them in the future.
I am looking for suggestions on what you guys use to help with these brute force attempted logins.

After some research, it looks like AFD and BFD might be a solution, but is there anything that you have found in your experience more effective? I would like to somehow automate the process of blocking those IP's that are malicious.

I am running CentOS 5 64 bit. Any suggestions are highly appreciated.
 
Do the following changes ,

1) Change ssh port
2) Disable direct root login and use a sudo login for ssh
3) disables anonymouse ftp , root ftp in ftp server
4) Install csf and configure it for alerts
 
Back
Top