[H-GEN] brute-force ssh(s) attacks [Was: Installing a website!]
Robert Brockway
rbrockway at opentrend.net
Tue Aug 9 21:18:04 EDT 2005
On Wed, 10 Aug 2005, Willie Yeo wrote:
> 1) disallow root ssh access
> 2) allow specific users to have ssh access to the box
> 3) using 'sudo' instead of 'su' for specific super-user stuff
> 4) change the port of sshd listening ;)
> 5) put a one-time password system :D
6) Block password access entirely and use public key encryption.
Personally I'm not a fan of changing the port.
Cheers,
Rob
--
Robert Brockway B.Sc. Phone: +1-416-669-3073
Senior Technical Consultant Email: support at opentrend.net
OpenTrend Solutions Ltd. Web: www.opentrend.net
We are open 24x7x365 for technical support. Call us in a crisis.
More information about the General
mailing list