The Daily Static
  The Daily Static
UF Archives
Register
UF Membership
Ad Free Site
Postcards
Community
Geekfinder
UFie Gear
Advertise on UF
Forum Rules
& FAQ

Username

Password


Create a New Account

  
 

Back to UserFriendly Strip Comments Index
sshd configuration advice, please? by bobmon2007-01-25 07:03:24
  my bits by c3po 2007-01-25 07:52:54
1.
I would change the ssh-port 22 to a different one, perhaps one that is not inside the /etc/services -file, so 'standard'-scanner will not chek the port (e.g. nmap in defaulkt-mode checks only the ports in the /etc/services-file).

example:
sshd_config:

ListenAddress 12.34.56.78:9876

2. (the usual ones)
PasswordAuthentication no
PermitEmptyPasswords no
PermitRootLogin no

so you need to use: public key auth
and you have to connect with a normal user and the su to root

3. block ips... hmmm iptables not ssh-native
[ Reply ]
    One warning here - make sure you don't lose your by sazzer2007-01-25 08:22:04
      one word: terminalserver :o) by c3po2007-01-25 11:12:59
      and do not forget - you by c3po2007-01-25 11:24:17

 

[Todays Cartoon Discussion] [News Index]

Come get yer ARS (Account Registration System) Source Code here!
All images, characters, content and text are copyrighted and trademarks of J.D. Frazer except where other ownership applies. Don't do bad things, we have lawyers.
UserFriendly.Org and its operators are not liable for comments or content posted by its visitors, and will cheerfully assist the lawful authorities in hunting down script-kiddies, spammers and other net scum. And if you're really bad, we'll call your mom. (We're not kidding, we've done it before.)