[CentOS] Intrusion Attempt Prevension - iptables problems
Ned Slider
ned at unixmail.co.ukMon Jan 12 23:47:08 UTC 2009
- Previous message: [CentOS] Intrusion Attempt Prevension - iptables problems
- Next message: [CentOS] Intrusion Attempt Prevension - iptables problems
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
David Klann wrote: > New to the list, so please forgive unintentional netiquette > transgressions... > Welcome :-) <snip> > > Discounting DoS or DDoS attacks, my solution to nefarious SSH attempts > is threefold: 1) run sshd on a port other than 22 (I know, obscurity > is not security...), 2) disable the root account (e.g., set the root > password to '*' in /etc/shadow), and allow only sudo(1) access to > privileged commands (this is the default on Ubuntu systems), and 3) > disable password authentication in sshd_config and require all ssh > users to log in using public key authentication. > > Probably other things one can do, but I think this is a good first > step. > http://wiki.centos.org/HowTos/Network/SecuringSSH
- Previous message: [CentOS] Intrusion Attempt Prevension - iptables problems
- Next message: [CentOS] Intrusion Attempt Prevension - iptables problems
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
More information about the CentOS mailing list