On Mon, Oct 11, 2010 at 16:31, justin randell <justin.rand...@gmail.com> wrote:
> unless there's some really good reason not to, i'd strongly advise > securing your ssh so that it's public-key only. i've seen too many > places that rely on limiting the amount of ssh attempts get hacked to > put any faith in that method any more. Don't discount defense in depth. Hostile IP addresses found by ssh rate-limiting can be blocked from all ports. It doesn't preclude use of keys instead of passwords. Nick. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html