26 Mar
2008
26 Mar
'08
3 p.m.
Robert Spangler wrote on Wed, 26 Mar 2008 08:03:48 -0400:
If you are going to use VPN then why not setup your remote site to use VPN and bypass SSH altogether then?
There could be several reasons, for instance: 1. SSH is all what is necessary 2. it's probably easier to have *one* VPN and then be able to ssh to dozens of other machines instead of setting up VPN on all of them and running several VPN tunnels at once
Bottom line is if you want to be secure don't use passwords for login.
Still doesn't stop those brute-force attacks. It just makes them fail. That's the point about moving port etc., not the security.
Kai
--
Kai Schätzl, Berlin, Germany
Get your web at Conactive Internet Services: http://www.conactive.com