SixXS::Sunset 2017-06-06

SSH ipv6-only = no ssh attacks yet
[dk] Shadow Hawkins on Monday, 22 November 2010 09:46:59
I've just switched my ssh to be ipv6 only. Ahh, now my log isn't filling with entries of failed ssh attempts. Nice :-)
SSH ipv6-only = no ssh attacks yet
[ie] Shadow Hawkins on Tuesday, 23 November 2010 00:53:38
Leif, Your approach is somehow weird.. and I personally wouldn't consider it as security improvement.. Today you can't see ssh attempts, tomorrow this will change.. In fact I already saw brute force attack attempts using IPv6, they are just less popular yet. I would rather consider running some packet filter for both IPv4 and IPv6. Regards, Sergiusz
SSH ipv6-only = no ssh attacks yet
[us] Shadow Hawkins on Tuesday, 23 November 2010 14:29:51
I'm inclined to agree. Security by obscurity (and right now, that's what IPv6 is) isn't security at all. I have seen logs on other forums that show SSH attacks on IPv6 addresses; while they are rare, they still happen, and will become more common as the days pass.

Please note Posting is only allowed when you are logged in.

Static Sunset Edition of SixXS
©2001-2017 SixXS - IPv6 Deployment & Tunnel Broker