SSH ipv6-only = no ssh attacks yet
Shadow Hawkins on Monday, 22 November 2010 09:46:59
I've just switched my ssh to be ipv6 only.
Ahh, now my log isn't filling with entries of failed ssh attempts.
Nice :-)
SSH ipv6-only = no ssh attacks yet
Shadow Hawkins on Tuesday, 23 November 2010 00:53:38
Leif,
Your approach is somehow weird.. and I personally wouldn't consider it as security improvement..
Today you can't see ssh attempts, tomorrow this will change.. In fact I already saw brute force attack attempts using IPv6, they are just less popular yet.
I would rather consider running some packet filter for both IPv4 and IPv6.
Regards,
Sergiusz
SSH ipv6-only = no ssh attacks yet
Shadow Hawkins on Tuesday, 23 November 2010 14:29:51
I'm inclined to agree. Security by obscurity (and right now, that's what IPv6 is) isn't security at all. I have seen logs on other forums that show SSH attacks on IPv6 addresses; while they are rare, they still happen, and will become more common as the days pass.
Posting is only allowed when you are logged in. |