Confuse Some SSH Bots
Postedabout 2 months agoActiveabout 2 months ago
mirror.newsdump.orgTechstory
calmpositive
Debate
20/100
SSH SecurityBot MitigationOpenssh
Key topics
SSH Security
Bot Mitigation
Openssh
The post discusses a technique to confuse SSH bots by modifying OpenSSH configuration, and the discussion revolves around the feasibility and potential improvements of this approach.
Snapshot generated from the HN discussion
Discussion Activity
Light discussionFirst comment
18m
Peak period
1
0-1h
Avg / period
1
Key moments
- 01Story posted
Nov 12, 2025 at 9:37 AM EST
about 2 months ago
Step 01 - 02First comment
Nov 12, 2025 at 9:56 AM EST
18m after posting
Step 02 - 03Peak activity
1 comments in 0-1h
Hottest window of the conversation
Step 03 - 04Latest activity
Nov 12, 2025 at 9:56 AM EST
about 2 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
ID: 45900760Type: storyLast synced: 11/17/2025, 6:02:17 AM
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.
If using OpenSSH v10 one can add a long VersionAddendum to get poorly coded SSH bots that's most of them stuck and force the botter to exclude us rather than us having to whack-a-mole their 250,000+ IP addresses.
The big banner is just in case they log ssh bot client output.
Test locally first and/or be logged into a out-of-band console to test. Do not use in production. May block some unmaintained SSH API clients with old ssh libraries.
some AI and RSS bots appear to also be stuck on this URL