Phill O'Flynn wrote:
> I am running a fedora server and currently using hosts.allow to
> only allow ssh accesses from specific ip addresses. I did this because I was
> getting
> a lot of idiots from eastern Europe and Russia tring to crack my server.
>
> This has been okĀ but now is prooving to be too restrictive. Can I get the
> server to force certificate based logins only?? If so how do I do it?? Is
> this the
> best approach anyway??
Also have a look at pam_abl:
http://www.hexten.net/wiki/index.php/Pam_abl
Erik
--
-----------------------------------------------------------------
Erik de Castro Lopo
-----------------------------------------------------------------
"Anyone who says you can have a lot of widely dispersed people hack
away on a complicated piece of code and avoid total anarchy has never
managed a software project." - Andy Tanenbaum in 1992 on comp.os.minix
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
