Menu
What's new
By:
Filters Better Search

N66U ssh brute force attack enable ??

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

jim769

jim769

Very Senior Member
Just wondering is there any good reason to enable ssh brute force attack in my router. The default is disabled is there any disadvantage to having it enabled ?
 
jim769 said:
Just wondering is there any good reason to enable ssh brute force attack in my router. The default is disabled is there any disadvantage to having it enabled ?
Click to expand...

Enabling this means that worms (or actual hackers) trying to guess the password to your SSH login will get locked out after a few failed attempts, making it next to impossible to brute force their way in.

This is only necessary if enabling SSH access from the WAN however... unless you don't trust your LAN users.

I would say that in fact, people enabling it on WAN should always enable the brute force detection as well, unless they only rely on key-based authentication.
 
RMerlin said:
Enabling this means that worms (or actual hackers) trying to guess the password to your SSH login will get locked out after a few failed attempts, making it next to impossible to brute force their way in.

This is only necessary if enabling SSH access from the WAN however... unless you don't trust your LAN users.

I would say that in fact, people enabling it on WAN should always enable the brute force detection as well, unless they only rely on key-based authentication.
Click to expand...

Any possibility of adding brute force detection to the VPN (PPTP) Server ?

It's the next best thing to IP blocking :)
 
elpibe10 said:
Any possibility of adding brute force detection to the VPN (PPTP) Server ?

It's the next best thing to IP blocking :)
Click to expand...

To be honest, PPTP should be disabled, as the protocol is insecure by design.
 
You must log in or register to reply here.

Similar threads

H
DNS-rebind attack detected: farm.plista.com. etc...??
Replies
3
Views
1K
Treadler
Treadler
D
News Cisco warns of large-scale brute-force attacks against VPN and SSH services
Replies
2
Views
807
Paliv
P
R
Prevent SSH Disconnect / Timeout around ~ 105-116 seconds from last activity on terminal session
Replies
7
Views
1K
ColinTaylor
C
D
Feature request: Two factor authentication web login. (TOTP)
Replies
8
Views
1K
DJones
D
TexasDave
WAN Setting - WAN Connection Type
Replies
2
Views
247
TexasDave
TexasDave
Similar threads
Thread starter Title Forum Replies Date
G How to start Wireguard Server in ssh ? Asuswrt-Merlin 2
NiceMan SSH+RT-AX88U Merlin+3004.388.8_4 Cannot log in Asuswrt-Merlin 1
M AC86U - SSH Disabled few seconds after boot - 386.14. Asuswrt-Merlin 2
A RT-AX88U - 3004.388.8_2 - SSH connection closed after few minutes from reboot Asuswrt-Merlin 10
CntrlAltDel Switch WAN type from SSH Asuswrt-Merlin 3
W Question: About AX4200 regarding SSH support and Entware Asuswrt-Merlin 23
S restart web server from SSH Asuswrt-Merlin 13
K Toggle VPN Director rules for WireGuard via SSH Asuswrt-Merlin 2
M ssh access with DNS name takes a long time where it did not used to Asuswrt-Merlin 0
William Higgs Ssh to router logging in as wrong user? Asuswrt-Merlin 3

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 537 (members: 27, guests: 510)
Top