[olug] example intrusion detection
Ryan Stille
rps at willconsult.com
Wed Oct 6 14:18:09 UTC 2004
Trent Melcher wrote:
> Another added feature is to wrapper sshd, if possible. This
> way not only
> can specific users log in, they can only log in from specific
> IP addressess
> or domains. The downside to this is that with a lot of ISPs
> using DHCP, so
> wrapping on an IP address doesn't work if the users IP changed.
>
> Trent
You could acomplish the same thing with a firewall, too? Or can you do something more complex with this, like allow root logins from the internal network but disallow them from the outside world?
-Ryan
More information about the OLUG
mailing list