Persisant attacks logged on a Linux server
Posted on 2006-04-06
Our logs indicate persistant attempts to log into our box as root and admin from foreign IP addresses (every few seconds)
Apart from ensuring a strong password and setting up firewall access to ssh from specific fixed IP addresses only, its there anything else we can practically do to either stop the attacks and/or secure the box.
Do most admin ignore this sort of attack as background 'noise'.