In addition to adding the non root user, i would suggest to install a daemon like
* fail2ban (http://www.fail2ban.org) It checks the log for failed (ssh) login attempts and block the originators ip address for a while. This blocks script kiddies after a few failed login attempts. Fail2ban works with python, but i guess there are other solutions that do the same. Also a mechanism like * Astup Comes to mind.... A script to easy install an update of asterisk, when a security fix is available for the installed version from the astlinux.org repository. If you have build your own version, and made it clear in the naming of the files, they should _not_ be replaced automatically. Jean-Paul ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Astlinux-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [EMAIL PROTECTED]
