[olug] Great SSH article
gregory at r3g.net
gregory at r3g.net
Wed Oct 27 14:31:39 UTC 2004
Yeah, some of the follow-up comments after the article are pretty important to my SSH configs, too.
1) disable password auth altogether
from the config: (/etc/ssh/sshd_config)
PasswordAuthentication no
2) disable root logins
from config:
PermitRootLogin no
3) run on non-standard port
from config:
Port 2202
4) run on protocol 2
from config:
Protocol 2
5) add tcpwrappers and complete both hosts.allow *and* hosts.deny
Original message:
----------------------------------------------
Subject:
[olug] Great SSH article
From:
Mike Hostetler <hostetlerm at gmail.com>
Date:
Tue, 26 Oct 2004 13:49:30 -0500
To:
Omaha Linux User Group <olug at olug.org>
Not sure if any else reads Tony Lawerence's site. It's great stuff.
Today he has an especially good article about securing SSH:
http://aplawrence.com/Blog/B1117.html
-- Mike Hostetler http://www.binary.net/thehaas
Gregory W Zill, MBA
Information Security | Solaris | Linux | Cisco | Network
402-556-1963
More information about the OLUG
mailing list