On Tue, February 14, 2006 11:52 am, Matthew Hannigan wrote: > On Tue, Feb 14, 2006 at 12:05:25PM +1100, Dave Kempe wrote: >> Voytek Eymont wrote:
> You probably want DenyHosts : http://denyhosts.sourceforge.net/ > But you're far better off whitelisting than blacklisting, if you can. > I only accept ssh connections to my box from a few machines. thanks as is, I'm the sole ssh user, though, I do use it from several hosts, not all known in advance to me where do I enter 'approved' hosts ? my current sshd_config has: ----------- Protocol 2 AllowUsers voytek SyslogFacility AUTHPRIV X11Forwarding yes Subsystem sftp /usr/libexec/openssh/sftp-server ----------- I guess I should get rid of the X11 line ? what else should I do here ? do I need sftp-server ? -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html