On Friday 10 October 2008 07:29:25 [EMAIL PROTECTED] wrote: > I am running a fedora server and currently using hosts.allow to > only allow ssh accesses from specific ip addresses. I did this because I > was getting a lot of idiots from eastern Europe and Russia tring to crack > my server. > > This has been okĀ but now is prooving to be too restrictive. Can I get the > server to force certificate based logins only?? If so how do I do it?? Is > this the best approach anyway??
On a non-standard port I've had ZERO login attempts over the last 3+ years, compared (like you) to 10s and 100s per day. This is trivial to implement even has the advantage of multiple servers/virtual servers behind a DSL router (different non standard for each) James -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html