Bret Hughes <[EMAIL PROTECTED]> said: > I am sure that is the case but improper use of cgi scripts, and know > exploits do exist on lnux too. What I thought was interesting was the > fact that a know openssh was explioted in less than an hour.
I have connected a new server to the Internet and within minutes seen SSH scans. > In fact I never let any machine even see the outside world until all > errata updates are applied and I have disabled all the stuff that I > don't need, and tweeked my config scripts especially sshd_config. Most definately. BTW, what tweaks do you do to SSH? All I usually do is disable protocol 1 fallback. Is there anything else that I should be doing? -- Regards, +-----------------------+---------------------------------+ | Peter Kiem | E-Mail : <[EMAIL PROTECTED]> | | Zordah IT | Mobile : +61 0414 724 766 | | IT Consultancy & | WWW : www.zordah.net | | Internet Hosting | ICQ : "Zordah" 866661 | +-----------------------+---------------------------------+ _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
