I'm getting regular attempts to brute force ssh on a x86 solaris 11.1 server. On linux I use DenyHosts to block connections after a number of incorrect login attempts. Is there a similar package for Solaris 11.1 or any recommendations on other alternative ways to prevent brute force of ssh?
Ssh – Solaris 11 sshd brute force protection. DenyHosts equivalent for Solaris 11
brute-force-attacksdenyhostssolarissshx86
Best Answer
Change the port SSH runs on. Brute force attempts are largely done against port 22.
Limit the users that are allowed to connect, for example:
Disable root login:
Use public key authentication rather than passwords.
Disable password based authentication (only do this if you use public key authentication):
Additionally, you can use firewall rules to restrict what remote hosts can access SSH on your system.