[CentOS] How to create a secure user only for ssh login?

William L. Maltby BillsCentOS at triad.rr.com
Wed Jun 14 19:17:34 UTC 2006


On Wed, 2006-06-14 at 15:00 -0400, William L. Maltby wrote:
> On Wed, 2006-06-14 at 20:22 +0200, M. Fioretti wrote:
> > On Wed, Jun 14, 2006 12:38:51 PM -0500, Les Mikesell
> > (lesmikesell at gmail.com) wrote:
> > 
> > > On Wed, 2006-06-14 at 18:56 +0200, M. Fioretti wrote:
> > > 
> > > > I've read on several howtos that one way to make ssh more secure,
> > > > <snip>

P.S. Also, if you change the SSH port from 22 to 459 (but better pick
one outside the reserved range I think) on the target machine so that
something like

    ssh -p 459 ...

is needed to connect, then all the nodes trying to penetrate are
stymied.

From rom "man ssh", /etc/ssh/sshrc might be useful for part of what you want
and "man sshd" might have something in the "command=" and
"from="pattern-list" sections that is useful.

> <snip sig stuff>

-- 
Bill
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.centos.org/pipermail/centos/attachments/20060614/08dd9608/attachment.bin


More information about the CentOS mailing list