How about creating a Referense list with all the suggestions that we are doing? If all of you agree, Let's start now.
SECURITY LIST ****************** 1. SSH. Deny root access setting "no" in PermitRootLogin option in sshd_config file 2. SSH. Change default port 3. OS Update. Keep debian Updated. 4.... > Date: Thu, 29 Dec 2011 16:16:45 +0100 > From: [email protected] > To: [email protected] > Subject: Re: need help with openssh attack > > Hi, > > To prevent brute-force attack, you can also use the package named > "fail2ban" which does not need lots of configuration or tweeking in many > situation. > > -- > Serge Dewailly - Administrateur Système > > > Le 29/12/11 15:04, Taz a écrit : > > Hello, we've got various debian servers, about 15, with different > > versions. All of them have been attacked today and granted root > > access. > > Can anybody help? We can give ssh access to attacked machine, it seems > > to be serious ssh vulnerability. > > > > How can i contact openssh mnt? > > > > Thank you. > > > > > > > -- > To UNSUBSCRIBE, email to [email protected] > with a subject of "unsubscribe". Trouble? Contact [email protected] > Archive: http://lists.debian.org/[email protected] >
