Secure your machine…Whitelist

I previously talked about a blacklisting method to reduce the number of ssh brute force attempts against your machine.  When you follow a blacklisting methodology, in theory, it could never end which is why people are screaming ‘whitelist’ today.  If you’re not ready to deny all and not absolutely sure of which IP you’ll be riding in on (back to home base) then you may want to take a look at the options below…

Most brute forcing today usually comes from Asia or Eastern Europe — blocking continents (if you can get away with it) is great practice.  Below are some links where you can copy & paste problematic IP ranges into your .htaccess or hosts.deny file….

Apache .htaccess block format

Country IP Blocks – choose a country and select the output in many formats (CIDR, hosts.deny, etc)

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s