[plug] ssh scans
Stuart Midgley
stuart.midgley at ivec.org
Wed Sep 20 09:23:13 WST 2006
actually, disabling root and only allowing certain users is really
easy with the
AllowUsers username1 usernam2
PermitRootLogin no
options in your sshd_config
These coupled with the iptable rules outlined in a previous email
make for quite a secure box.
Stu.
On 20/09/2006, at 9:14 AM, Shayne O'Neill wrote:
> For SSH I suggest 2 things
>
> 1) "Disable" root. By this I mean, just set an improbable password
> that will never ever be discovered because its 300 characters of
> shite. Or whatever. Then setup SUDO and set it up well.
> 2) Install fail2ban. fail2ban just ban's IP's that scan or cause
> multiple auth errors.
>
--
Dr Stuart Midgley
Industry Uptake Program Leader
iVEC, 'The hub of advanced computing in Western Australia'
26 Dick Perry Avenue, Technology Park
Kensington WA 6151
Australia
Phone: +61 8 6436 8545
Fax: +61 8 6436 8555
Email: industry at ivec.org
WWW: http://www.ivec.org
More information about the plug
mailing list