[wellylug] got ya / 4
steve
ldreamer at lgw.co.nz
Tue Oct 12 16:50:15 NZDT 2004
On Tue, 2004-10-12 at 16:25, Edmund A. Hintz wrote:
> On Tue, Oct 12, 2004, Ewen McNeill thus spake:
>
> >Providing you have good passwords, disable the accounts you don't need
> >anyone logging into, and (ideally) disable direct root logins it
> >shouldn't be a major concern. Oh, and keep your systems patched.
>
> Or go super paranoid - disable password logins altogether and only
> allow ssh keys. Also use the AllowUsers bit and reduce to only users with
> a reason to ssh in...
>
> Fun with OpenSSH... ;-)
Then if you wanna get ultra carried away, you could implement some form
of tcp door knocking ;-)
http://cmn.listprojects.darklab.org/
I couldn't agree more in regards to ssh-keys only!
More information about the wellylug
mailing list