Re: Hacks

---

• From: Tim <ts@xxxxxxxxxx>
• Date: Tue, 27 Feb 2007 12:50:46 +0000

---

Andy Burns wrote:

On 27/02/2007 11:04, Tim wrote:

You might consider these things to beef up sshd:

1) Limit the allowed ssh logins to specific usernames - best see the
documentation for how to - I don't recall the specifics.

2) Patch sshd with any Fedora security updates.

3) Deny root logins using both step 1 and explicitly in the sshd_config
(there is an option for it).

4) setup SSH to *only* use certificate base login, and allowing root
login from trusted subnet(s) only.

A very good solution, if it is practical. I've never found it necessary to
go to these lengths though.

Cheers

Tim
.

---

• Follow-Ups:
  • Re: Hacks
    • From: Andy Burns

• References:
  • Hacks
    • From: Simon Dean
  • Re: Hacks
    • From: Tim
  • Re: Hacks
    • From: Simon Dean
  • Re: Hacks
    • From: Tim
  • Re: Hacks
    • From: Andy Burns

• Prev by Date: Re: Hacks
• Next by Date: Re: Hacks
• Previous by thread: Re: Hacks
• Next by thread: Re: Hacks
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

newsgroups.derkeiler.com  > Archive  > Uk  > uk.comp.os.linux  > 2007-02