mozz@mbin.grits.dev to Technology@lemmy.ml · 11 个月前Linux devices are under attack by a never-before-seen wormarstechnica.comexternal-linkmessage-square20fedilinkarrow-up1134arrow-down116file-text
arrow-up1118arrow-down1external-linkLinux devices are under attack by a never-before-seen wormarstechnica.commozz@mbin.grits.dev to Technology@lemmy.ml · 11 个月前message-square20fedilinkfile-text
minus-squareKairoslinkfedilinkarrow-up28·11 个月前 the NoaBot targets weak passwords connecting SSH connections. Harden your configs people. AllowUsers is a really goood one.
minus-square𝓢𝓮𝓮𝓙𝓪𝔂𝓔𝓶𝓶@lemmy.procrastinati.orglinkfedilinkarrow-up18·11 个月前Or just don’t allow password auth at all.
minus-square𝓢𝓮𝓮𝓙𝓪𝔂𝓔𝓶𝓶@lemmy.procrastinati.orglinkfedilinkarrow-up2·11 个月前If we’re going to play that game. Require an Ed25519 key with a strong password.
minus-squaremozz@mbin.grits.devOPlinkfedilinkarrow-up1·11 个月前 (In this case the “wrench” is just breaking into some weak link that isn’t ssh, once your password is strong to not be a weak link)
minus-squaresugar_in_your_tea@sh.itjust.workslinkfedilinkarrow-up1·11 个月前Also install something like fail2ban to prevent brute force attacks.
Harden your configs people.
AllowUsers is a really goood one.
Or just don’t allow password auth at all.
Or just have a good password
If we’re going to play that game. Require an Ed25519 key with a strong password.
Or ed25519-sk.
(In this case the “wrench” is just breaking into some weak link that isn’t ssh, once your password is strong to not be a weak link)
Also install something like fail2ban to prevent brute force attacks.