[CentOS] Securing SSH wiki article outdated

Sat Feb 14 02:42:41 UTC 2015
Earl A Ramirez <earlaramirez at gmail.com>

On Fri, 2015-02-13 at 18:27 -0800, PatrickD Garvey wrote:
> On Fri, Feb 13, 2015 at 7:12 AM, Lamar Owen <lowen at pari.edu> wrote:
> > On 02/13/2015 05:41 AM, James Hogarth wrote:
> >
> > This is also why the Orange Book and its Rainbow kin exist (Orange Book =
> > 5200.28-STD, aka DoD Trusted Computer System Evaluation Criteria).
> >
> 
> Should anyone care to learn from the Rainbow Books, they are available
> from the United States of America (USA) National Institute of
> Standards and Technology (NIST) Computer Security Resource Center
> (CSRC) Selected Historical Computer Security Papers,
> http://csrc.nist.gov/publications/secpubs/ There is a caveat however,
> "The Rainbow Series of Department of Defense standards is outdated,
> out of print, and provided here for historical purposes ONLY." I
> imagine the CSRC believes some of their other readily available
> publications are not outdated.
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos

Staying on the original post, there are valuable information from this
thread about how to secure ssh, now which one of us are willing to
update the wiki. 

We can include the use of two factor authentication, public key
authentication, challenge response authentication, modifying
the /etc/hosts.allow (I have noticed that libwarp no longer contain ssh
etc...

I will read up on how to contribute to the CentOS wiki and get involved
with the documentation.