[CentOS] ssh security

Frank Cox theatre at sasktel.net
Fri Jun 19 17:29:23 UTC 2009

On Fri, 19 Jun 2009 19:54:37 +0300 (AST)
Cisco-Education wrote:

> Now both the Mail server and the backup pc server behind firewall and ssh
> protocol is denied to the hosts in the DMZ zone

This statement is incorrect.  What you think you have set up isn't what you
actually have set up.  The outside world apparently has full access to your
ssh service; your firewall isn't blocking it at all.

The proper fix depends on your needs.  You should definitely fix the firewall;
then after that you can restrict access to sshd by IP address and username and
deny password access.

MELVILLE THEATRE ~ Melville Sask ~ http://www.melvilletheatre.com

More information about the CentOS mailing list