[CentOS] Re: Ideas for stopping ssh brute force attacks

22 Jul 2008


      In article c077d2020807220540u6ecbaa30tc3409678737dc74e@mail.gmail.com,
Michael Semcheski mhsemcheski@gmail.com wrote:
...
How do you get the keys to the server the first time after they're
generated?  Its kind of the chicken and an egg problem without the
password authentication -- that's why I still have passwords turned on
(but require __very__ strong passwords.)
I start off with password authentication enabled, then scp my authorized_keys
file to the server, check my keys work, and then disable passwords in sshd.
Cheers
Tony
-- 
Tony Mountifield
Work: tony@softins.co.uk - http://www.softins.co.uk
Play: tony@mountifield.org - http://tony.mountifield.org

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

[CentOS] Re: Ideas for stopping ssh brute force attacks