Bug 1877

Summary: Protection against brute force attacks
Product: Portable OpenSSH Reporter: sworddragon2
Component: sshdAssignee: Assigned to nobody <unassigned-bugs>
Status: CLOSED WONTFIX    
Severity: normal CC: contact, djm
Priority: P2    
Version: 5.8p1   
Hardware: All   
OS: Linux   

Description sworddragon2 2011-03-08 12:04:21 AEDT 
I see every few days in the process list that somebody is trying to connect to my server every second. I have a good password and such a brute force attack is nearly impossible but I want some more security.

For example an option that blocks an ip address for a specific time after a few amount of fails. Another example is that we can allow ssh connections only every few seconds from a client. All these values should be configurable.
Comment 1 Damien Miller 2011-04-12 15:40:49 AEST 
Good external solutions exist. The best is to enforce password strength.
Comment 2 LOGIN 2011-07-04 00:36:32 AEST 
One more great solution against Brute Force attack is LoginWall.

you could download free anti brute force solution from their website www.loginwall.com
Comment 3 Damien Miller 2011-09-06 15:33:01 AEST 
close resolved bugs now that openssh-5.9 has been released