Roel Cuppen wrote: > Hi, > > I would like to secure ssh access on astlunix. > I've open ssh access from the internet. > Currently i use ssh public key authentication, so it's quite secure. > Sometimes I change the ssh port(22) to another one. > You can easily change the port sshd listens to in rc.conf > The mean reason why i would like to secure ssh, is about 'brute force' / > password attacks. > > With tcp wrappers it's possible to use denyhosts or some other scripts. > But I read many messages of compiling tcp wrappers in uclibc. > It seems to be hard to get tcp wrappers working. > I've already tried to compile sshd with the folowing configure syntax. > --with-libwrap=/path-to-libwrap.a/ > With no success.... > We can look into this. libwrap is currently not included in the build environment. You'd need to first add that, then compile ssh with the additional options. Look at Arno's firewall. There are several options in there that can be used to increase security. > Maybe there is another way to secure ssh ? Arno's firewall script allows blocking IP addresses and host names. You could use a script to add addresses or host names to a blocked hosts file and issue a breread to Arno's firewall.
Darrick -- Darrick Hartman DJH Solutions, LLC http://www.djhsolutions.com _______________________________________________ Astlinux-users mailing list [email protected] http://lists.kriscompanies.com/mailman/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [EMAIL PROTECTED]
