Hacking fryol.net

So I see that there’s some bots coming in to ssh into fryol.net. I can’t stop those guys. As long as there are doors with locks, there will be attempts to break in. Even though this site has everything turned inside out, bots don’t care, they’ll try to get in anyway.

Anyway, the purpose of this post is to warn folks out there that you shouldn’t keep your usernames (on your ssh port) that are a part of the list in this text file: https://fryol.net/r/?attachment_id=1264. Actually, there are a lot of ways to make sure that your ssh port is well protected, and disabling all users but the one that you would actually only use (AllowUsers setting in /etc/ssh/sshd_config) is a great way to do this. Also, please disable password authentication. Use keys only. If you dunno what I’m talking about, it might just be a good idea to not run sshd at all. Heh.

Some very interesting names in there. Who the hell is praktikant that made it into that list? Lucky bastard.