Jump to content

I'm under an ssh attack, how do I stop it?


Go to solution Solved by itimpi,

Recommended Posts

  • Solution

blacklisting an IP is not really a solution as it does not stop an attack from a different one.
 

Unraid is not hardened against internet attacks.   If you want to allow access from the internet then a better solution would be to only allow access via a VPN (such as the WireGuard one built into Unraid or an alternative such as Tailscale. ) so that there is no direct access from the internet to vulnerable ports.  Then you do not need to have many ports forwarded in the first place.

Link to comment
7 minutes ago, itimpi said:

blacklisting an IP is not really a solution as it does not stop an attack from a different one.
 

Unraid is not hardened against internet attacks.   If you want to allow access from the internet then a better solution would be to only allow access via a VPN (such as the WireGuard one built into Unraid or an alternative such as Tailscale. ) so that there is no direct access from the internet to vulnerable ports.  Then you do not need to have many ports forwarded in the first place.

I agree with you.I will try this way.

Link to comment

Hi @itimpi

I turned off all port forwarding

 

Can I have a bit question? 

I saw this line in system log

 

Aug 12 19:57:25 UNRAID sshd[4048]: srclimit_penalise: ipv4: new 91.92.249.229/32 deferred penalty of 5 seconds for penalty: failed authentication

 

Can I set the penalty time to other values(5h or 5day)?

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...