On Mon, 11 Jun 2007 16:06:19 +0300 David Baron <[EMAIL PROTECTED]> wrote:
> On Monday 11 June 2007, [EMAIL PROTECTED] wrote: > > > Not exactly answering your question. But I do see a lot of IPs performing > > > dictionary attacks on my machine. What I do is go through > > > /var/log/auth.log periodically and add the offending IPs to > > > /etc/hosts.deny . That way, in future, the offending IPs cannot perform > > > any dictionary attacks. I currently have around 85 IPs in this list > > > (starting Apr 10, 2007) :-) > > > > > > You should also disable remote root logins to make the machine more > > > secure. > > > > The best thing you can do is to disable password logins altogether. > > Using public keys is much more secure and makes it *impossible* for a > > dictionary attack to succeed. > > Might be best idea. How does one do it? Edit /etc/ssh/sshd_config' and set 'PasswordAuthentication' and 'ChallengeResponseAuthentication' to 'No'. Celejar -- mailmin.sourceforge.net - remote access via secure (OpenPGP) email ssuds.sourceforge.net - A Simple Sudoku Solver and Generator -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
