On Fri, 2015-02-13 at 18:27 -0800, PatrickD Garvey wrote: > On Fri, Feb 13, 2015 at 7:12 AM, Lamar Owen <lowen at pari.edu> wrote: > > On 02/13/2015 05:41 AM, James Hogarth wrote: > > > > This is also why the Orange Book and its Rainbow kin exist (Orange Book = > > 5200.28-STD, aka DoD Trusted Computer System Evaluation Criteria). > > > > Should anyone care to learn from the Rainbow Books, they are available > from the United States of America (USA) National Institute of > Standards and Technology (NIST) Computer Security Resource Center > (CSRC) Selected Historical Computer Security Papers, > http://csrc.nist.gov/publications/secpubs/ There is a caveat however, > "The Rainbow Series of Department of Defense standards is outdated, > out of print, and provided here for historical purposes ONLY." I > imagine the CSRC believes some of their other readily available > publications are not outdated. > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos Staying on the original post, there are valuable information from this thread about how to secure ssh, now which one of us are willing to update the wiki. We can include the use of two factor authentication, public key authentication, challenge response authentication, modifying the /etc/hosts.allow (I have noticed that libwarp no longer contain ssh etc... I will read up on how to contribute to the CentOS wiki and get involved with the documentation.